CVE-2024-3444 | Wangshen SecGate 3600 up to 20240408 ?g=net_pro_keyword_import_save reqfile unrestricted upload

Inserito da Angelo Barbosa | Apr 8, 2024 | CVE

A vulnerability was found in Wangshen SecGate 3600 up to 20240408. It has been classified as critical. This affects an unknown part of the file /?g=net_pro_keyword_import_save. The manipulation of the argument reqfile leads to unrestricted upload.

This vulnerability is uniquely identified as CVE-2024-3444. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-3444 | Wangshen SecGate 3600 up to 20240408 ?g=net_pro_keyword_import_save reqfile unrestricted upload

Post correlati

CVE-2024-32492 | Znuny up to 7.0.16 Ticket Detail View cross site scripting

CVE-2023-51688 | impleCode eCommerce Product Catalog Plugin up to 3.3.26 on WordPress information disclosure

CVE-2023-27975 | Schneider Electric EcoStruxure Control Expert Project File insufficiently protected credentials (SEVD-2024-044-01)

CVE-2024-5673 | Dulldusk PHP File Manager 1.7.8 index.php fm_current_dir cross site scripting