Roothub v2.5 was discovered to contain an arbitrary file upload vulnerability via the customPath parameter in the upload() function. This vulnerability allows attackers to execute arbitrary code via a crafted JSP file.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-05-07T00:00:00

Updated: 2024-08-02T02:27:53.360Z

Reserved: 2024-04-23T00:00:00

Link: CVE-2024-33120

cve-icon Vulnrichment

Updated: 2024-05-07T18:36:08.552Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-07T15:15:09.353

Modified: 2024-11-21T09:16:32.870

Link: CVE-2024-33120

cve-icon Redhat

No data.