CVE-2024-25291 | Deskfiler 1.2.3 Plugin unrestricted upload

Inserito da Angelo Barbosa | Feb 29, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Deskfiler 1.2.3. Affected is an unknown function of the component Plugin Handler. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2024-25291. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-25291 | Deskfiler 1.2.3 Plugin unrestricted upload

Post correlati

CVE-2023-50053 | Foundation Platform 1.0 Message information disclosure

CVE-2024-34528 | WordOps up to 3.20.0 stack_pref.py os.open toctou (Issue 611)

CVE-2024-41570 | Havoc 0.7 server-side request forgery

CVE-2024-44965 | Linux Kernel up to 6.10.4 pti_clone_pgtable stack-based overflow