CVE-2024-50919

CVSS 9.8 CRITICALEPSS 1.1%CWE-94

Jpress until v5.1.1 has arbitrary file uploads on the windows platform, and the construction of non-standard file formats such as .jsp. can lead to arbitrary command execution

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Productos afectados

n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://gist.github.com/microvorld/516552dcef65acc2d1ab0fb969cd34a3 https://github.com/JPressProjects/jpress https://github.com/microvorld/CVE-2024/blob/main/jpress.md