CVE-2024-13022 – Taisan Tarzan-cms Unrestricted File Upload Vulnerability

12月 29, 2024
9:16 pm

CVE ID : CVE-2024-13022

Published : Dec. 29, 2024, 8:15 p.m. | 1 hour, 1 minute ago

Description : A vulnerability, which was classified as critical, was found in taisan tarzan-cms 1.0.0. This affects the function UploadResponse of the file src/main/java/com/tarzan/cms/modules/admin/controller/common/UploadController.java of the component Article Management. The manipulation of the argument file leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13022 – Taisan Tarzan-cms Unrestricted File Upload Vulnerability

Elvescore.io

Recent Posts

CVE-2024-23416 – Apache Struts Deserialization Weakness

CVE-2024-23417 – Rejected reason: To maintain compliance with CNA r

CVE-2024-23418 – Apple iOS Memory Corruption Vulnerability

CVE-2024-23419 – Here is a title for a vulnerability: Apache Tomcat Authenticated Remote Code Execution Vulnerability

CVE-2024-23420 – Here is a potential title: HP Enterprise 3PAR Array Unauthenticated Remote Command Injection Vulnerability

CVE-2024-23421 – Samsung Exynos Command Injection

CVE-2024-13022 – Taisan Tarzan-cms Unrestricted File Upload Vulnerability

CVE-2024-13022 – Taisan Tarzan-cms Unrestricted File Upload Vulnerability