Products
MegaBIP software
- through 5.10
Source
cvd@cert.pl
Tags
CVE-2024-1659 details
Published : June 12, 2024, 2:15 p.m.
Last Modified : June 12, 2024, 2:15 p.m.
Last Modified : June 12, 2024, 2:15 p.m.
Description
Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the server (including a PHP code file) without an authentication. This issue affects MegaBIP software versions through 5.10.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://cert.pl/en/posts/2024/06/CVE-2024-1576/ | cvd@cert.pl |
https://cert.pl/posts/2024/06/CVE-2024-1576/ | cvd@cert.pl |
https://megabip.pl/ | cvd@cert.pl |
https://www.gov.pl/web/cyfryzacja/rekomendacja-pelnomocnika-rzadu-ds-cyberbezpieczenstwa-dotyczaca-biuletynow-informacji-publicznej | cvd@cert.pl |
This website uses the NVD API, but is not approved or certified by it.