5 matches found
CVE-2024-13138
A vulnerability was found in wangl1989 mysiteforme 1.0. It has been declared as critical. This vulnerability affects the function upload of the file src/main/java/com/mysiteform/admin/service/ipl/LocalUploadServiceImpl. The manipulation of the argument test leads to unrestricted upload. The attac...
CVE-2024-13138
A vulnerability was found in wangl1989 mysiteforme 1.0. It has been declared as critical. This vulnerability affects the function upload of the file src/main/java/com/mysiteform/admin/service/ipl/LocalUploadServiceImpl. The manipulation of the argument test leads to unrestricted upload. The attac...
CVE-2024-13138
creationtimestamp| type| source ---|---|--- 2025-01-05 10:33:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113775293668984827 2025-01-05 11:15:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3leyikrsmra2k 2025-01-05 11:47:47+00:00| seen|...
CVE-2024-13138 wangl1989 mysiteforme LocalUploadServiceImpl upload unrestricted upload
A vulnerability was found in wangl1989 mysiteforme 1.0. It has been declared as critical. This vulnerability affects the function upload of the file src/main/java/com/mysiteform/admin/service/ipl/LocalUploadServiceImpl. The manipulation of the argument test leads to unrestricted upload. The attac...
CVE-2024-13138
CVE-2024-13138 affects wangl1989 mysiteforme 1.0, specifically the file upload logic in LocalUploadServiceImpl (src/main/java/com/mysiteform/admin/service/ipl/LocalUploadServiceImpl). The root cause is manipulation of the argument named test, enabling unrestricted file upload. The issue is exploi...