6 matches found
CVE-2024-50652
A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...
CVE-2024-50652
The CVE-2024-50652 entry concerns a file upload vulnerability in java_shop 1.0 that allows an attacker to upload arbitrary files by manipulating the avatar function. Multiple connected sources provide concrete details: the vulnerability affects java_shop 1.0 and enables arbitrary file upload, wit...
CVE-2024-50652
A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...
CVE-2024-50651
CVE-2024-50651 affects java_shop 1.0. The vulnerability is an Incorrect Access Control flaw that allows an attacker to obtain sensitive information of users with different IDs by modifying the ID parameter. The Red Hat and NVD entries corroborate the same description. The issue is described acros...
CVE-2024-50652
A file upload vulnerability in javashop 1.0 allows attackers to upload arbitrary files by modifying the avatar function...
CVE-2024-50651
javashop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter...