CVE-2024-50648 | yshopmall 1.0 JSP File Parser unrestricted upload

Inserito da Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability has been found in yshopmall 1.0 and classified as critical. This vulnerability affects unknown code of the component JSP File Parser. The manipulation leads to unrestricted upload.

This vulnerability was named CVE-2024-50648. The attack can be initiated remotely. There is no exploit available.

CVE-2024-50648 | yshopmall 1.0 JSP File Parser unrestricted upload

Post correlati

CVE-2024-7683 | SourceCodester Kortex Lite Advocate Office Management System 1.0 addcase_stage.php cname cross site scripting

CVE-2024-8694 | JFinalCMS up to 20240903 com.cms.controller.admin.TemplateController /admin/template/update fileName path traversal (IAOKSQ)

CVE-2024-25942 | Dell PowerEdge Platform prior 1.19.0/2.14.0/2.19.0 SMM Communication input validation (dsa-2024-104)

CVE-2023-5936 | Nozomi Networks Arc up to 1.5.x on Linux/macOS Temporary Files permission assignment