Description
A vulnerability, which was classified as critical, has been found in Prain up to 1.3.0. Affected by this issue is some unknown functionality of the file /?import of the component HTTP POST Request Handler. The manipulation of the argument file leads to code injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-272072.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2024-47936 | A vulnerability, which was classified as critical, has been found in Prain up to 1.3.0. Affected by this issue is some unknown functionality of the file /?import of the component HTTP POST Request Handler. The manipulation of the argument file leads to code injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-272072. |
References
History
No history.
Subscriptions
No data.
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2024-08-01T21:45:38.358Z
Reserved: 2024-07-20T10:20:15.432Z
Link: CVE-2024-6950
Updated: 2024-08-01T21:45:38.358Z
Status : Deferred
Published: 2024-07-21T11:15:02.287
Modified: 2026-06-17T08:19:03.273
Link: CVE-2024-6950
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-94
Improper Control of Generation of Code ('Code Injection')
EUVD