Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
GeeeeeeeekJava Shop

2 matches found

CVE
CVEadded 2024/11/15 12:0 a.m.57 views

CVE-2024-50652

The CVE-2024-50652 entry concerns a file upload vulnerability in java_shop 1.0 that allows an attacker to upload arbitrary files by manipulating the avatar function. Multiple connected sources provide concrete details: the vulnerability affects java_shop 1.0 and enables arbitrary file upload, wit...

6.3CVSS7AI score0.00087EPSS
CVE
CVEadded 2024/11/15 12:0 a.m.54 views

CVE-2024-50651

CVE-2024-50651 affects java_shop 1.0. The vulnerability is an Incorrect Access Control flaw that allows an attacker to obtain sensitive information of users with different IDs by modifying the ID parameter. The Red Hat and NVD entries corroborate the same description. The issue is described acros...

6.5CVSS6.4AI score0.00436EPSS