CVE-2024-56829 | Huang Yaoshi Pharmaceutical Management Software up to 16.0 /XSDService.asmx UploadFile fileName unrestricted upload

Inserito da Angelo Barbosa | Gen 2, 2025 | CVE

A vulnerability has been found in Huang Yaoshi Pharmaceutical Management Software up to 16.0 and classified as critical. This vulnerability affects the function UploadFile of the file /XSDService.asmx. The manipulation of the argument fileName leads to unrestricted upload.

This vulnerability was named CVE-2024-56829. The attack can be initiated remotely. There is no exploit available.

CVE-2024-56829 | Huang Yaoshi Pharmaceutical Management Software up to 16.0 /XSDService.asmx UploadFile fileName unrestricted upload

Post correlati

CVE-2024-9904 | 07FLYCMS/07FLY-CMS/07FlyCRM up to 1.2.0 pictureUpload file unrestricted upload

CVE-2024-40476 | SourceCodester Best House Rental Management System 1.0 Delete Tenant Action ajax.php cross-site request forgery

CVE-2024-2488 | Tenda AC18 15.03.05.05 /goform/SetPptpServerCfg formSetPPTPServer startIP stack-based overflow

CVE-2024-35621 | Formwork up to 1.12.x Edit Content cross site scripting