3 matches found
CVE-2024-55078
An arbitrary file upload vulnerability in the component /adminUser/updateImg of WukongCRM-11.0-JAVA v11.3.3 allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-55078
An arbitrary file upload vulnerability in the component /adminUser/updateImg of WukongCRM-11.0-JAVA v11.3.3 allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-55078
CVE-2024-55078 – WukongCRM-11.0-JAVA (v11.3.3) has an arbitrary file upload flaw in the /adminUser/updateImg component that can lead to remote code execution when a crafted file is uploaded. CVSS v3.1 base score 9.8 (CRITICAL): Network attack vector, no privileges required, no user interaction, w...