4 matches found
CVE-2024-37273
An arbitrary file upload vulnerability in the /v1/app/appendFileSync interface of Jan v0.4.12 allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-37273
An arbitrary file upload vulnerability in the /v1/app/appendFileSync interface of Jan v0.4.12 allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-37273
An arbitrary file upload vulnerability in the /v1/app/appendFileSync interface of Jan v0.4.12 allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-37273
CVE-2024-37273 affects the Jan project, specifically version 0.4.12 . The vulnerability lies in the /v1/app/appendFileSync interface, where uploading a crafted file can lead to arbitrary code execution on the server. The available connected document details confirm this arbitrary-file-upload flaw...