Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ CVE-2024-24025 | novel-plus up to 4.3.0-RC1 com.java2nb.common.controller.FileController upload filename unrestricted upload
Team IT Security Nachrichtenportal Logo

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security
RSS Feed Symbol fรผr Team IT Security 800+ IT News als RSS Feed abonnieren



๐Ÿ“š CVE-2024-24025 | novel-plus up to 4.3.0-RC1 com.java2nb.common.controller.FileController upload filename unrestricted upload


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: vuldb.com

A vulnerability was found in novel-plus up to 4.3.0-RC1 and classified as problematic. Affected by this issue is the function upload of the component com.java2nb.common.controller.FileController. The manipulation of the argument filename leads to unrestricted upload. This vulnerability is handled as CVE-2024-24025. The attack needs to be initiated within the local network. There is no exploit available. ...



Sharing is caring on Social Media

๐Ÿ”— Reddit
๐Ÿ”— Telegram
๐Ÿ”— LinkedIn
๐Ÿ”— Xing
๐Ÿ”— Twitter
๐Ÿ”— Whatsapp
๐Ÿ”— Facebook
๐Ÿ”— Flipboard

Join the Team IT Security Community

๐Ÿ”— "IT Sicherheit" Reddit-Gruppe
๐Ÿ”— "IT Sicherheit" Telegramm-Seite

๐Ÿ“Œ CVE-2022-36593 | kkFileView 4.0.0 FileController.java fileName denial of service (ID 370)


๐Ÿ“ˆ 43.81 Punkte

๐Ÿ“Œ CVE-2023-6887 | saysky ForestBlog up to 20220630 Image Upload /admin/upload/img filename unrestricted upload


๐Ÿ“ˆ 41.41 Punkte

๐Ÿ“Œ CVE-2023-1433 | SourceCodester Gadget Works Online Ordering System 1.0 Products controller.php filename unrestricted upload


๐Ÿ“ˆ 37.59 Punkte

๐Ÿ“Œ CVE-2023-45353 | Atos Unify OpenScape Common Management Portal V10 up to 4.16.x/5.0.x Common Management Portal Web Interface unrestricted upload


๐Ÿ“ˆ 36.94 Punkte

๐Ÿ“Œ CVE-2014-1214 | ProJoom Smart Flash Header up to 3.0.2 on Joomla views/upload.php Filename unrestricted upload (XFDB-91020 / OSVDB-102969)


๐Ÿ“ˆ 35.91 Punkte

๐Ÿ“Œ CVE-2019-12271 | Sandline Centraleyezer File Upload Filename unrestricted upload (ID 155355)


๐Ÿ“ˆ 35.91 Punkte

๐Ÿ“Œ CVE-2022-42147 | kkFileView 4.0 Filecontroller.java cross site scripting


๐Ÿ“ˆ 31.11 Punkte

๐Ÿ“Œ CVE-2023-7037 | automad up to 1.10.9 FileController.php import importUrl server-side request forgery


๐Ÿ“ˆ 31.11 Punkte

๐Ÿ“Œ CVE-2022-2804 | SourceCodester Zoo Management System /pages/apply_vacancy.php filename unrestricted upload


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2022-44006 | BACKCLICK Professional 5.9.63 Filename unrestricted upload (SYSS-2022-031)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-1479 | SourceCodester Simple Music Player 1.0 save_music.php filename unrestricted upload


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-2419 | Zhong Bang CRMEB 4.6.0 SystemAttachmentServices.php videoUpload filename unrestricted upload (Issue 77)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-5262 | OpenRapid RapidCMS 1.3.1 uploadicon.php isImg fileName unrestricted upload (Issue 10)


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ CVE-2023-46574 | Totolink A3700R 9.1.2u.6165_20211012 UploadFirmwareFile FileName unrestricted upload


๐Ÿ“ˆ 30.4 Punkte

๐Ÿ“Œ Redmine up to 4.0.8/4.1.2/4.2.0 Filename unrestricted upload


๐Ÿ“ˆ 29.22 Punkte

๐Ÿ“Œ CVE-2015-5681 | Powerplay Gallery Plugin 3.3 on WordPress File Upload upload.php unrestricted upload (ID 132671)


๐Ÿ“ˆ 28.71 Punkte

๐Ÿ“Œ CVE-2022-3771 | easyii CMS File Upload Management helpers/Upload.php file unrestricted upload


๐Ÿ“ˆ 28.71 Punkte

๐Ÿ“Œ CVE-2017-15054 | TeamPass up to 2.1.27.8 File Upload upload.files.php Parameter unrestricted upload (ID 865292)


๐Ÿ“ˆ 28.71 Punkte

๐Ÿ“Œ CVE-2019-19634 | verot.net class.upload up to 2.0.4 File Extension class.upload.php unrestricted upload


๐Ÿ“ˆ 28.71 Punkte

๐Ÿ“Œ CVE-2023-1970 | yuan1994 tpAdmin 1.3.12 Upload.php Upload file unrestricted upload


๐Ÿ“ˆ 28.71 Punkte

๐Ÿ“Œ Duke University Researchers Propose Policy Stitching: A Novel AI Framework that Facilitates Robot Transfer Learning for Novel Combinations of Robots and Tasks


๐Ÿ“ˆ 26.65 Punkte

๐Ÿ“Œ Bytedance Announces DiffPortrait3D: A Novel Zero-Shot View Synthesis AI Method that Extends 2D Stable Diffusion for Generating 3d Consistent Novel Views Given as Little as a Single Portrait


๐Ÿ“ˆ 26.65 Punkte

๐Ÿ“Œ libmspack up to 0.6 CHM Filename mspack/chmd.c Blank Filename memory corruption


๐Ÿ“ˆ 25.41 Punkte

๐Ÿ“Œ libmspack bis 0.6 CHM Filename mspack/chmd.c Blank Filename unbekannte Schwachstelle


๐Ÿ“ˆ 25.41 Punkte

๐Ÿ“Œ CVE-2022-36580 | janobe Online Ordering System 2.3.2 controller.php unrestricted upload


๐Ÿ“ˆ 24.89 Punkte

๐Ÿ“Œ CVE-2023-1734 | SourceCodester Young Entrepreneur E-Negosyo System 1.0 controller.php image unrestricted upload


๐Ÿ“ˆ 24.89 Punkte

๐Ÿ“Œ Aviatrix Controller prior 6.0.2483 API unrestricted upload


๐Ÿ“ˆ 23.7 Punkte

๐Ÿ“Œ OpenEMR up to 5.0.1 /controller.php unrestricted upload


๐Ÿ“ˆ 23.7 Punkte

๐Ÿ“Œ CVE-2016-1524 | Netgear Management System NMS300 up to 1.5.0.11 File Upload fileUpload.do unrestricted upload (ID 135618 / EDB-39412)


๐Ÿ“ˆ 23.2 Punkte

๐Ÿ“Œ CVE-2022-32994 | Halo CMS 1.5.3 upload unrestricted upload


๐Ÿ“ˆ 23.2 Punkte

๐Ÿ“Œ CVE-2022-2419 | URVE Web Manager upload.php unrestricted upload


๐Ÿ“ˆ 23.2 Punkte

๐Ÿ“Œ CVE-2021-36461 | Microweber 1.1.3 Settings Upload Picture user.ini unrestricted upload (ID 751)


๐Ÿ“ˆ 23.2 Punkte

๐Ÿ“Œ CVE-2022-34113 | Dataease 1.11.1 Plugin /api/plugin/upload unrestricted upload (ID 2431)


๐Ÿ“ˆ 23.2 Punkte

๐Ÿ“Œ CVE-2022-34154 | ideasToCode Enable SVG, WebP & ICO Upload Plugin up to 1.0.1 on WordPress unrestricted upload


๐Ÿ“ˆ 23.2 Punkte

๐Ÿ“Œ CVE-2022-2736 | SourceCodester Company Website CMS Background Upload Logo Icon updatelogo.php xfile/ufile unrestricted upload


๐Ÿ“ˆ 23.2 Punkte











matomo

Kontakt

24/7 [email protected]

Weitere Informationen

Google Android Playstore Download Button fรผr Team IT Security
๐Ÿ”— Impressum
๐Ÿ”— Datenschutz
Paypal Spenden fรผr Projekt

Social Media

๐Ÿ”— Facebook
๐Ÿ”— Reddit
๐Ÿ”— Team IT Security als Elektron App
๐Ÿ”— © 2015-2023 Team IT Security Nachrichtenportal รผber Cybersecurity
๐Ÿ”— CMS "myDraft" a PHP Portal Software