Lucene search
K

CVE-2024-4220

🗓️ 04 Jun 2024 20:13:11Reported by BTType 
cve
 cve
🔗 web.nvd.nist.gov👁 72 Views🌐 WEB

CVE-2024-4220 NVD

Related
Detection
Affected
Refs
Paths
ReporterTitlePublishedViews
Family
Circl
CVE-2024-4220
6 Feb 202503:13
circl
Cvelist
CVE-2024-4220 Information Disclosure in BeyondInsight
4 Jun 202420:13
cvelist
EUVD
EUVD-2024-32772
3 Oct 202520:07
euvd
Metasploit
Chamilo v1.11.24 Unrestricted File Upload PHP Webshell
4 Dec 202418:58
metasploit
NVD
CVE-2024-4220
4 Jun 202421:15
nvd
OSV
CVE-2024-4220
4 Jun 202421:15
osv
Vulnrichment
CVE-2024-4220 Information Disclosure in BeyondInsight
4 Jun 202420:13
vulnrichment
NVD
[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Windows",
      "64 bit",
      "32 bit"
    ],
    "product": "BeyondInsight",
    "vendor": "BeyondTrust",
    "versions": [
      {
        "lessThan": "23.1",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
actionrequest body / query param/main/inc/lib/javascript/bigupload/inc/bigUpload.phpUnrestricted file upload: attacker can upload a PHP webshell by POSTing a file to bigUpload.php with action=post-unsupported, bypassing extension checks and placing the file under /main/inc/lib/javascript/bigupload/files/CWE-200
bigUploadFilerequest body / query param/main/inc/lib/javascript/bigupload/inc/bigUpload.phpUnrestricted file upload: attacker can upload a PHP webshell by POSTing a file to bigUpload.php with action=post-unsupported, bypassing extension checks and placing the file under /main/inc/lib/javascript/bigupload/files/CWE-200

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 08:01Current
4.4Medium risk
Vulners AI Score4.4
CVSS 3.14.3 - 5.3
EPSS0.00255
SSVC
72