CVE-2024-28441
CVE-2024-28441 affects magicflue (v7.0 and earlier). The vulnerability is a file upload flaw that allows remote code execution via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint. Connected documents confirm affected software/version range and the exact parameter/...