CVE-2024-12358 – Weiyedatax-Web Os Command Injection Vulnerability

12月 9, 2024
6:16 am

CVE ID : CVE-2024-12358

Published : Dec. 9, 2024, 5:15 a.m. | 1 hour, 1 minute ago

Description : A vulnerability was found in WeiYe-Jing datax-web 2.1.1. It has been classified as critical. This affects an unknown part of the file /api/job/add/. The manipulation of the argument glueSource leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-12358 – Weiyedatax-Web Os Command Injection Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12960 – Apache MCA 1.0 SQL Injection Vulnerability

CVE-2024-12961 – Apache MCA Portfolio Management System SQL Injection Vulnerability

CVE-2024-12908 – Delinea Secret Server Regular Expression Injection Vulnerability

CVE-2024-12958 – RPost MCA SQL Injection Vulnerability

CVE-2024-12959 – “Fortress MCA SQL Injection”

CVE-2024-51540 – Dell ECS Arithmetic Overflow Vulnerability (Path Traversal)

CVE-2024-12358 – Weiyedatax-Web Os Command Injection Vulnerability

CVE-2024-12358 – Weiyedatax-Web Os Command Injection Vulnerability