3 matches found
CVE-2024-1264
A vulnerability has been found in Juanpao JPShop up to 1.5.02 and classified as critical. Affected by this vulnerability is the function actionUpdate of the file /api/controllers/common/UploadsController.php. The manipulation of the argument imgage leads to unrestricted upload. The attack can be...
CVE-2024-1264
A vulnerability has been found in Juanpao JPShop up to 1.5.02 and classified as critical. Affected by this vulnerability is the function actionUpdate of the file /api/controllers/common/UploadsController.php. The manipulation of the argument imgage leads to unrestricted upload. The attack can be...
CVE-2024-1264
Juanpao JPShop up to version 1.5.02 is affected. The vulnerability resides in the function actionUpdate of /api/controllers/common/UploadsController.php, where manipulating the argument imgage enables unrestricted file uploads. Exploitation is remote and publicly disclosed. Affected versions: JPS...