Metrics
Affected Vendors & Products
Fri, 30 Aug 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Hfo4
Hfo4 shudong-share |
|
CPEs | cpe:2.3:a:hfo4:shudong-share:2.4.7:*:*:*:*:*:*:* | |
Vendors & Products |
Hfo4
Hfo4 shudong-share |
|
Metrics |
ssvc
|
Fri, 30 Aug 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in HFO4 shudong-share 2.4.7. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /includes/fileReceive.php of the component File Extension Handler. The manipulation of the argument file leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. | |
Title | HFO4 shudong-share File Extension fileReceive.php unrestricted upload | |
Weaknesses | CWE-434 | |
References |
| |
Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2024-08-30T14:31:04.161Z
Updated: 2024-08-30T18:14:15.809Z
Reserved: 2024-08-30T07:10:19.611Z
Link: CVE-2024-8338
Updated: 2024-08-30T18:14:00.343Z
Status : Analyzed
Published: 2024-08-30T15:15:19.973
Modified: 2024-09-25T19:12:05.877
Link: CVE-2024-8338
No data.