2 matches found
CVE-2024-34909
KYKMS is affected by an arbitrary file upload vulnerability (KYKMS v1.0.1 and below) that enables an attacker to execute arbitrary code by uploading a crafted PDF. Root cause: improper handling of uploaded files leading to code execution. Public disclosures across multiple sources confirm the vul...
CVE-2024-34909
An arbitrary file upload vulnerability in KYKMS v1.0.1 and below allows attackers to execute arbitrary code via uploading a crafted PDF file...