CVE-2024-22523 | Qiyu iFair up to 23.8_ad0 uploadimage path traversal

Inserito da Angelo Barbosa | Gen 30, 2024 | CVE

A vulnerability classified as critical was found in Qiyu iFair up to 23.8_ad0. This vulnerability affects the function uploadimage. The manipulation leads to path traversal.

This vulnerability was named CVE-2024-22523. The attack can be initiated remotely. There is no exploit available.

CVE-2024-22523 | Qiyu iFair up to 23.8_ad0 uploadimage path traversal

Post correlati

CVE-2024-24575 | libgit2 up to 1.6.4/1.7.1 src/libgit2/revparse.c git_revparse_single resource consumption (GHSA-54mf-x2rh-hq9v)

CVE-2024-4779 | Unlimited Elements for Elementor Plugin up to 1.5.107 on WordPress data[post_ids][0] sql injection

Galaxy Software Services Vitals ESP unrestricted upload

CVE-2024-38763 | Popularis Verse Plugin up to 1.0.1 on WordPress cross-site request forgery