Vulnerability CVE-2024-8940


Published: 2024-09-25

Description:
Vulnerability in the Scriptcase application version 9.4.019, which involves the arbitrary upload of a file via /scriptcase/devel/lib/third/jquery_plugin/jQuery-File-Upload/server/php/ via a POST request. An attacker could upload malicious files to the server due to the application not properly verifying user input.

Type:

CWE-434

(Unrestricted Upload of File with Dangerous Type)

 References:
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-scriptcase

Copyright 2026, cxsecurity.com

 

Back to Top