Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:15 a.m.2 views

CVE-2024-9291

A vulnerability classified as problematic has been found in kalvinGit kvf-admin up to f12a94dc1ebb7d1c51ee978a85e4c7ed75c620ff. Affected is an unknown function of the file /ueditor/upload?configPath=ueditor/config.json=uploadfile of the component XML File Handler. The manipulation of the argument...

5.4CVSS5.4AI score0.00366EPSS
Exploits1References1
NVD
NVD
added 2024/09/27 9:15 p.m.11 views

CVE-2024-9291

A vulnerability classified as problematic has been found in kalvinGit kvf-admin up to f12a94dc1ebb7d1c51ee978a85e4c7ed75c620ff. Affected is an unknown function of the file /ueditor/upload?configPath=ueditor/config.json&action=uploadfile of the component XML File Handler. The manipulation of the...

5.4CVSS0.00366EPSS
Exploits1References5
CVE
CVE
added 2024/09/27 9:0 p.m.48 views

CVE-2024-9291

CVE-2024-9291 concerns kalvinGit kvf-admin (XML File Handler). The vulnerability affects the file "/ueditor/upload?configPath=ueditor/config.json&action=uploadfile" where manipulation of the upfile argument enables cross-site scripting. It can be exploited remotely, and the exploit has been discl...

5.4CVSS4AI score0.00366EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/27 12:0 p.m.16 views

CVE-2024-9280 kalvinGit kvf-admin FileUploadKit.java fileUpload unrestricted upload

A vulnerability has been found in kalvinGit kvf-admin up to f12a94dc1ebb7d1c51ee978a85e4c7ed75c620ff and classified as critical. This vulnerability affects the function fileUpload of the file FileUploadKit.java. The manipulation of the argument file leads to unrestricted upload. The attack can be...

5.8CVSS6.9AI score0.00576EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/09/27 12:0 p.m.28 views

CVE-2024-9280 kalvinGit kvf-admin FileUploadKit.java fileUpload unrestricted upload

A vulnerability has been found in kalvinGit kvf-admin up to f12a94dc1ebb7d1c51ee978a85e4c7ed75c620ff and classified as critical. This vulnerability affects the function fileUpload of the file FileUploadKit.java. The manipulation of the argument file leads to unrestricted upload. The attack can be...

5.8CVSS0.00576EPSS
Exploits0References4
CVE
CVE
added 2024/09/27 12:0 p.m.54 views

CVE-2024-9280

CVE-2024-9280 affects kalvinGit kvf-admin (up to commit f12a94dc1ebb7d1c51ee978a85e4c7ed75c620ff). The root cause is in FileUploadKit.java: the fileUpload function allows unrestricted uploads by manipulating the file argument, enabling remote exploitation. Public exploit exists. No versioned fix ...

9.8CVSS5.3AI score0.00576EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/27 12:0 a.m.4 views

PT-2024-39546 · Unknown · Kalvingit Kvf-Admin

Name of the Vulnerable Software and Affected Versions: kalvinGit kvf-admin up to f12a94dc1ebb7d1c51ee978a85e4c7ed75c620ff Description: A problematic vulnerability has been found in the XML File Handler component of kalvinGit kvf-admin. The issue affects an unknown function of the file...

5.4CVSS4.3AI score0.00366EPSS
Exploits1References8
Rows per page
Query Builder