CVE-2024-1818 | CodeAstro Membership Management System 1.0 Logo /uploads/ unrestricted upload

Posted by Angelo Barbosa | Feb 23, 2024 | CVE

A vulnerability was found in CodeAstro Membership Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /uploads/ of the component Logo Handler. The manipulation leads to unrestricted upload.

This vulnerability is handled as CVE-2024-1818. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-1818 | CodeAstro Membership Management System 1.0 Logo /uploads/ unrestricted upload

Related Posts

CVE-2024-5165 | Eclipse Ditto up to 3.5.5 Explorer User Interface cross site scripting (Issue 23)

CVE-2024-2874 | GitLab Community Edition/Enterprise Edition up to 16.10.5/16.11.2/17.0.0 Description resource consumption (Issue 451911)

CVE-2024-24311 | Linea Grafica Multilingual and Multistore Sitemap Pro Module up to 1.6.5 on PrestaShop path traversal

CVE-2024-31839 | tiagorlampert CHAOS 5.0.1 handler.go sendCommandHandler cross site scripting