3 matches found
CVE-2024-51499
MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write vulnerability accessible via the updatefiles method of the SubmissionsController allows authenticated users e.g. students to write arbitrary files to any location...
CVE-2024-51499
creationtimestamp| type| source ---|---|--- 2024-11-18 20:00:05+00:00| seen| https://infosec.exchange/users/cve/statuses/113505730866493568 2024-11-18 21:34:12+00:00| seen| https://t.me/cvedetector/11380...
CVE-2024-51499 MarkUs Arbitrary File Write leading up to remote code execution (student accounts)
MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write vulnerability accessible via the updatefiles method of the SubmissionsController allows authenticated users e.g. students to write arbitrary files to any location...