A vulnerability was found in magicflue up to 7.0. It has been classified as critical. This affects an unknown part of the file mail/mailupdate.jsp. The manipulation of the argument messageid leads to unrestricted upload.
This vulnerability is uniquely identified as CVE-2024-28441. It is possible to initiate the attack remotely. There is no exploit available.