Roothub v2.5 was discovered to contain an arbitrary file upload vulnerability via the customPath parameter in the upload() function. This vulnerability allows attackers to execute arbitrary code via a crafted JSP file.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-05-07T00:00:00
Updated: 2024-08-02T02:27:53.360Z
Reserved: 2024-04-23T00:00:00
Link: CVE-2024-33120
Vulnrichment
Updated: 2024-05-07T18:36:08.552Z
NVD
Status : Awaiting Analysis
Published: 2024-05-07T15:15:09.353
Modified: 2024-11-21T09:16:32.870
Link: CVE-2024-33120
Redhat
No data.