Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:34 a.m.9 views

CVE-2024-50652

A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...

6.3CVSS7AI score0.00282EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 3:36 a.m.37 views

Security Bulletin: IBM Watson CP4D Data Stores is vulnerable to java_shop arbitrary code execution vulnerabilitiy (CVE-2024-50652)

Summary A potential arbitrary code execution vulnerability CVE-2024-50652 has been identified related to javashop that affects IBM Watson CP4D Data Stores. This vulnerability have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-50652 DESCRIPTION:...

6.3CVSS5.8AI score0.00282EPSS
Exploits1Affected Software1
NVD
NVD
added 2024/11/15 4:15 p.m.20 views

CVE-2024-50652

A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...

6.3CVSS0.00282EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/11/15 12:0 a.m.18 views

CVE-2024-50651

javashop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter...

0.0049EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/11/15 12:0 a.m.13 views

CVE-2024-50652

A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...

7.2AI score0.00282EPSS
Exploits1References2
CVE
CVE
added 2024/11/15 12:0 a.m.61 views

CVE-2024-50652

The CVE-2024-50652 entry concerns a file upload vulnerability in java_shop 1.0 that allows an attacker to upload arbitrary files by manipulating the avatar function. Multiple connected sources provide concrete details: the vulnerability affects java_shop 1.0 and enables arbitrary file upload, wit...

6.3CVSS7AI score0.00282EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/15 12:0 a.m.18 views

CVE-2024-50651

javashop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter...

6.4AI score0.0049EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/11/15 12:0 a.m.5 views

java_shop 安全漏洞

javashop is a Java-based mall website system designed and implemented by Tim Green, an individual developer. A security vulnerability exists in javashop version 1.0. An attacker can exploit the vulnerability to upload arbitrary files by modifying the avatar function...

6.3CVSS7AI score0.00282EPSS
Exploits1References2
CVE
CVE
added 2024/11/15 12:0 a.m.60 views

CVE-2024-50651

CVE-2024-50651 affects java_shop 1.0. The vulnerability is an Incorrect Access Control flaw that allows an attacker to obtain sensitive information of users with different IDs by modifying the ID parameter. The Red Hat and NVD entries corroborate the same description. The issue is described acros...

6.5CVSS6.4AI score0.0049EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/11/15 12:0 a.m.23 views

CVE-2024-50652

A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...

0.00282EPSS
Exploits1References2
Rows per page
Query Builder