A vulnerability has been found in Magic-Api up to 2.0.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /resource/file/api/save?auto=1. The manipulation leads to code injection.
This vulnerability is known as CVE-2024-0196. The attack can be launched remotely. Furthermore, there is an exploit available.