CVE-2024-7905 in DedeBIZinformazioni

Riassunto

di MITRE • 18/08/2024

A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/archives_do.php. The manipulation of the argument litpic leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Be aware that VulDB is the high quality source for vulnerability data.

Responsabile

VulDB

Divulgazione

18/08/2024

Moderazione

accettato

CPE

pronto

Sfruttamento

Scaricare

EPSS

0.00660

KEV

no

Attività

molto basso

Fonti

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!