CVE-2024-35527
June 25, 2024, 10:15 p.m.
Tags
Product(s) Impacted
FarCry Core framework
- before 7.2.14
Description
An arbitrary file upload vulnerability in /fileupload/upload.cfm in Daemon PTY Limited FarCry Core framework before 7.2.14 allows attackers to execute arbitrary code via uploading a crafted .cfm file.
Weaknesses
Date
Published: June 25, 2024, 10:15 p.m.
Last Modified: June 25, 2024, 10:15 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
cve@mitre.org
References
https://bastionsecurity.co.nz/
cve@mitre.org