A security vulnerability has been identified in Bludit, allowing attackers with knowledge of the API token to upload arbitrary files through the File API which leads to arbitrary code execution on the server. This vulnerability arises from improper handling of file uploads, enabling malicious actors to upload and execute PHP files.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: NCSC.ch

Published: 2024-06-24T07:05:50.655Z

Updated: 2024-08-01T23:19:52.559Z

Reserved: 2024-01-25T14:02:00.526Z

Link: CVE-2024-24550

cve-icon Vulnrichment

Updated: 2024-06-24T13:33:32.615Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-06-24T07:15:13.580

Modified: 2024-11-21T08:59:23.793

Link: CVE-2024-24550

cve-icon Redhat

No data.