Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:5 a.m.9 views

CVE-2024-29640

An issue in aliyundrive-webdav v.2.3.3 and before allows a remote attacker to execute arbitrary code via a crafted payload to the sid parameter in the actionqueryqrcode component...

9.8CVSS7.8AI score0.01436EPSS
Exploits0References1
OSV
OSV
added 2024/03/29 6:30 p.m.23 views

GHSA-73V2-RXQP-7Q4F aliyundrive-webdav vulnerable to Command Injection

An issue in aliyundrive-webdav v.2.3.3 and before allows a remote attacker to execute arbitrary code via a crafted payload to the sid parameter in the actionqueryqrcode component...

9.8CVSS9.6AI score0.01436EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/03/29 6:30 p.m.28 views

aliyundrive-webdav vulnerable to Command Injection

An issue in aliyundrive-webdav v.2.3.3 and before allows a remote attacker to execute arbitrary code via a crafted payload to the sid parameter in the actionqueryqrcode component...

9.8CVSS8.1AI score0.01436EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2024/03/29 5:15 p.m.15 views

CVE-2024-29640

An issue in aliyundrive-webdav v.2.3.3 and before allows a remote attacker to execute arbitrary code via a crafted payload to the sid parameter in the actionqueryqrcode component...

9.8CVSS7.5AI score0.01436EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/29 12:0 a.m.14 views

CVE-2024-29640

An issue in aliyundrive-webdav v.2.3.3 and before allows a remote attacker to execute arbitrary code via a crafted payload to the sid parameter in the actionqueryqrcode component...

7.8AI score0.01436EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/03/29 12:0 a.m.18 views

CVE-2024-29640

An issue in aliyundrive-webdav v.2.3.3 and before allows a remote attacker to execute arbitrary code via a crafted payload to the sid parameter in the actionqueryqrcode component...

7.7AI score0.01436EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/03/29 12:0 a.m.7 views

aliyundrive-webdav 安全漏洞

aliyundrive-webdav is an aliyundrive WebDAV service from messense individual developers. A security vulnerability in aliyundrive-webdav v.2.3.3 and earlier versions exists that could allow a remote attacker to execute arbitrary code via the sid parameter in the actionqueryqrcode component using a...

9.8CVSS9.2AI score0.01436EPSS
Exploits0References4
Rows per page
Query Builder