CVE-2024-52769

An arbitrary file upload vulnerability in the component /admin/friendlink_edit of DedeBIZ v6.3.0 allows attackers to execute arbitrary code via uploading a crafted file.
Configurations

No configuration.

History

29 Nov 2024, 22:15

Type Values Removed Values Added
CWE CWE-434
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.2

21 Nov 2024, 13:57

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de carga de archivos arbitrarios en el componente /admin/friendlink_edit de DedeBIZ v6.3.0 permite a los atacantes ejecutar código arbitrario mediante la carga de un archivo manipulado específicamente.

20 Nov 2024, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-20 17:15

Updated : 2024-11-29 22:15


NVD link : CVE-2024-52769

Mitre link : CVE-2024-52769

CVE.ORG link : CVE-2024-52769


JSON object : View

Products Affected

No product.

CWE
CWE-434

Unrestricted Upload of File with Dangerous Type