CVE-2024-55078 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An arbitrary file upload vulnerability in the component /adminUser/updateImg of WukongCRM-11.0-JAVA v11.3.3 allows attackers to execute arbitrary code via uploa…
Critical CVSS: 9.8

CVE-2024-55078

An arbitrary file upload vulnerability in the component /adminUser/updateImg of WukongCRM-11.0-JAVA v11.3.3 allows attackers to execute arbitrary code via uploading a crafted file.
Vendor
-
Product
-
CWE
CWE-434
Yayın Tarihi
2025-01-03 15:15:10
Güncelleme
2025-01-03 20:15:27
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-434 CRITICAL 2025

Referanslar

https://gist.github.com/summerxxoo/8a0c9905feda6e192c10b860888afd26 https://github.com/summerxxoo/VulnPoc/blob/main/WukongCRM-11.0-JAVA%20-File%20upload%20across%20directories.md