An arbitrary file upload vulnerability in the component \controller\ImageUploadController.class of inxedu v2.0.6 allows attackers to execute arbitrary code via uploading a crafted jsp file.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/KakeruJ/CVE/ |
History
Mon, 26 Aug 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-434 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-26T15:41:39.310Z
Reserved:
Link: CVE-2024-35570
Vulnrichment
Updated: 2024-08-02T03:14:53.882Z
NVD
Status : Awaiting Analysis
Published: 2024-05-23T19:16:01.747
Modified: 2024-08-26T16:35:08.370
Link: CVE-2024-35570
Redhat
No data.