cve/CVE-2023-24998.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 4edef1e4c8 Update CVE sources 2024-05-28 08:49

2024-05-28 08:49:17 +00:00

1.3 KiB

Raw Permalink Blame History

CVE-2023-24998

Description

Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads.Note that, like all of the file upload limits, the new configuration option (FileUploadBase#setFileCountMax) is not enabled by default and must be explicitly configured.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Threekiii/CVE
https://github.com/muneebaashiq/MBProjects
https://github.com/nice1st/CVE-2023-24998
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/speedyfriend67/Experiments

1.3 KiB Raw Permalink Blame History

CVE-2023-24998

Description

POC

Reference

Github

1.3 KiB

Raw Permalink Blame History