10 matches found
CVE-2024-50652
A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...
Security Bulletin: IBM Watson CP4D Data Stores is vulnerable to java_shop arbitrary code execution vulnerabilitiy (CVE-2024-50652)
Summary A potential arbitrary code execution vulnerability CVE-2024-50652 has been identified related to javashop that affects IBM Watson CP4D Data Stores. This vulnerability have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-50652 DESCRIPTION:...
CVE-2024-50652
A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...
CVE-2024-50651
javashop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter...
CVE-2024-50652
A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...
CVE-2024-50652
The CVE-2024-50652 entry concerns a file upload vulnerability in java_shop 1.0 that allows an attacker to upload arbitrary files by manipulating the avatar function. Multiple connected sources provide concrete details: the vulnerability affects java_shop 1.0 and enables arbitrary file upload, wit...
CVE-2024-50651
javashop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter...
java_shop 安全漏洞
javashop is a Java-based mall website system designed and implemented by Tim Green, an individual developer. A security vulnerability exists in javashop version 1.0. An attacker can exploit the vulnerability to upload arbitrary files by modifying the avatar function...
CVE-2024-50651
CVE-2024-50651 affects java_shop 1.0. The vulnerability is an Incorrect Access Control flaw that allows an attacker to obtain sensitive information of users with different IDs by modifying the ID parameter. The Red Hat and NVD entries corroborate the same description. The issue is described acros...
CVE-2024-50652
A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...