CVE-2024-50649 | geeeeeeeek python_book 1.0 User Avatar unrestricted upload

Inserito da Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability, which was classified as critical, has been found in geeeeeeeek python_book 1.0. This issue affects some unknown processing of the component User Avatar Handler. The manipulation leads to unrestricted upload.

The identification of this vulnerability is CVE-2024-50649. The attack may be initiated remotely. There is no exploit available.

CVE-2024-50649 | geeeeeeeek python_book 1.0 User Avatar unrestricted upload

Post correlati

CVE-2024-20314 | Cisco IOS XE up to 17.12.1w SD-Access Fabric Edge Node operator precedence logic error (cisco-sa-ios-xe-sda-edge-dos-qZWuWXWG)

CVE-2024-45007 | Linux Kernel up to 5.15.165/6.1.106/6.6.47/6.10.6 xillybus destroy_workqueue Privilege Escalation

CVE-2024-2136 | WPKoi Templates for Elementor Plugin up to 2.5.6 on WordPress Advanced Heading Widget cross site scripting

CVE-2024-34475 | Open5GS up to 2.7.0 NAS Message amf/gmm-sm.c gmm_state_authentication assertion