Vulnerability CVE-2024-35570
Published: 2024-05-23

Description:
An arbitrary file upload vulnerability in the component \controller\ImageUploadController.class of inxedu v2.0.6 allows attackers to execute arbitrary code via uploading a crafted jsp file.

 References:
https://github.com/KakeruJ/CVE/
Copyright 2024, cxsecurity.com

 

Back to Top