CVE-2024-28441

File Upload vulnerability in magicflue v.7.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint...

magicflue file upload vulnerability

magicflue is a digital nervous system of China magicflue company, which can support the integration of complex business scenarios and complex IT environment without code platform. A file upload vulnerability exists in magicflue, which can be exploited by an attacker to execute arbitrary code via ...

CVE-2024-28441

File Upload vulnerability in magicflue v.7.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint...

CVE-2024-28441

File Upload vulnerability in magicflue v.7.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint...

CVE-2024-28441

CVE-2024-28441 affects magicflue (v7.0 and earlier). The vulnerability is a file upload flaw that allows remote code execution via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint. Connected documents confirm affected software/version range and the exact parameter/...

magicflue 安全漏洞

magicflue is a digital nervous system of China magicflue company, which can support the integration of complex business scenarios and complex IT environment without code platform. A file upload vulnerability exists in magicflue, which can be exploited by an attacker to execute arbitrary code via ...

PT-2024-22437 · Magicflue · Magicflue

Name of the Vulnerable Software and Affected Versions: magicflue versions 7.0 and earlier Description: The issue allows a remote attacker to execute arbitrary code via a crafted request to the messageid parameter of the "mail/mailupdate.jsp" endpoint. This enables the attacker to potentially gain...