CVE-2024-2604 | SourceCodester File Manager App 1.0 update-file.php file unrestricted upload

Inserito da Angelo Barbosa | Mar 18, 2024 | CVE

A vulnerability was found in SourceCodester File Manager App 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /endpoint/update-file.php. The manipulation of the argument file leads to unrestricted upload.

This vulnerability was named CVE-2024-2604. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-2604 | SourceCodester File Manager App 1.0 update-file.php file unrestricted upload

Post correlati

CVE-2024-29176 | Dell PowerProtect DD prior 8.0 buffer overflow (dsa-2024-219)

CVE-2023-51782 | Linux Kernel up to 6.6.7 net/rose/af_rose.c rose_ioctl use after free

CVE-2024-6075 | WP-FeedStats wp-cart-for-digital-products Plugin up to 8.5.4 on WordPress cross-site request forgery

CVE-2023-49620 | Apache DolphinScheduler up to 3.0.x Resource Center authorization