mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-06-01 11:11:27 +00:00
24 lines
969 B
JSON
24 lines
969 B
JSON
{
|
|
"id": "CVE-2024-28441",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2024-03-22T02:15:08.480",
|
|
"lastModified": "2024-03-22T12:45:36.130",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "File Upload vulnerability in magicflue v.7.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Vulnerabilidad de carga de archivos en magicflue v.7.0 y anteriores permite a un atacante remoto ejecutar c\u00f3digo arbitrario a trav\u00e9s de una solicitud manipulada al par\u00e1metro messageid del endpoint mail/mailupdate.jsp."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://github.com/iamHuFei/HVVault/blob/main/webapp/%E9%AD%94%E6%96%B9%E7%BD%91%E8%A1%A8/magicflu-mailupdate-jsp-fileupload.md",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |