File Upload vulnerability in magicflue v.7.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint.
Metrics
Affected Vendors & Products
References
History
Thu, 22 Aug 2024 19:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-434 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-03-22T00:00:00
Updated: 2024-08-22T17:55:05.927Z
Reserved: 2024-03-08T00:00:00
Link: CVE-2024-28441
Vulnrichment
Updated: 2024-08-02T00:56:57.628Z
NVD
Status : Awaiting Analysis
Published: 2024-03-22T02:15:08.480
Modified: 2024-08-22T18:35:05.960
Link: CVE-2024-28441
Redhat
No data.