CVE-2024-33120

May 7, 2024, 8:07 p.m.

Product(s) Impacted

Roothub

Description

Roothub v2.5 was discovered to contain an arbitrary file upload vulnerability via the customPath parameter in the upload() function. This vulnerability allows attackers to execute arbitrary code via a crafted JSP file.

Weaknesses

Date

Published: May 7, 2024, 3:15 p.m.

Last Modified: May 7, 2024, 8:07 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

http://roothub.com

cve@mitre.org

https://github.com/cxcxcxcxcxcxcxc/cxcxcxcxcxcxcxc/blob/main/cxcxcxcxcxc/about-2024/33120.txt

cve@mitre.org

CVE-2024-33120

Tags

Product(s) Impacted

Description

Weaknesses

Date

Status : Awaiting Analysis

Source

References

Share