cve/CVE-2024-6707.md at main - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 4bc2a1b403 Update CVE sources 2024-08-08 18:49

2024-08-08 18:49:29 +00:00

915 B

Raw Permalink Blame History

CVE-2024-6707

Description

Attacker controlled files can be uploaded to arbitrary locations on the web server's filesystem by abusing a path traversal vulnerability.

POC

Reference

https://korelogic.com/Resources/Advisories/KL-001-2024-006.txt

Github

https://github.com/fkie-cad/nvd-json-data-feeds