2 matches found
CVE-2024-1263
creationtimestamp| type| source ---|---|--- 2024-02-07 00:31:42+00:00| seen| https://t.me/ctinow/180433 2024-03-01 09:11:13+00:00| seen| https://t.me/ctinow/197401...
CVE-2024-1263
The CVE-2024-1263 entry concerns Juanpao JPShop (up to v1.5.02). The vulnerability is in the API component, specifically the function actionUpdate in /api/controllers/merchant/shop/PosterController.php, where manipulation of the pic_url argument allows unrestricted file uploads. Impact is describ...