5 matches found
CVE-2024-56975
InvoicePlane all versions tested as of December 2024 v.1.6.11 and before contains a remote code execution vulnerability in the uploadfile method of the Upload controller...
CVE-2024-56975
InvoicePlane all versions tested as of December 2024 v.1.6.11 and before contains a remote code execution vulnerability in the uploadfile method of the Upload controller...
CVE-2024-56975
InvoicePlane all versions tested as of December 2024 v.1.6.11 and before contains a remote code execution vulnerability in the uploadfile method of the Upload controller...
CVE-2024-56975
InvoicePlane all versions tested as of December 2024 v.1.6.11 and before contains a remote code execution vulnerability in the uploadfile method of the Upload controller...
CVE-2024-56975
CVE-2024-56975 affects InvoicePlane versions 1.6.11 and earlier, with a remote code execution vulnerability in the upload_file method of the Upload controller. The issue is confirmed across multiple feeds; the root cause is exposure of the upload functionality enabling code execution. The connect...