CVE-2024-13145 – Zhenfeng13 My-Blog Unrestricted File Upload Vulnerability

1月 6, 2025
2:18 am

CVE ID : CVE-2024-13145

Published : Jan. 6, 2025, 1:15 a.m. | 1 hour, 3 minutes ago

Description : A vulnerability classified as critical was found in zhenfeng13 My-Blog 1.0. Affected by this vulnerability is the function upload of the file src/main/java/com/site/blog/my/core/controller/admin/uploadController. java. The manipulation of the argument file leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13145 – Zhenfeng13 My-Blog Unrestricted File Upload Vulnerability

Elvescore.io

Recent Posts

CVE-2024-54764 – ipTIME A2004 Unauthenticated Information Disclosure

CVE-2024-54767 – AVM FRITZ!Box 7530 AX XML External Entity (XXE) Information Disclosure

CVE-2024-55553 – FRR RPKI Update Flooding Remote Denial of Service

CVE-2025-21620 – Deno Authorization Header Leakage

CVE-2021-27285 – Inspur ClusterEngine Privilege Escalation Vulnerability

CVE-2024-46981 – Redis Lua Scripting Remote Code Execution Vulnerability

CVE-2024-13145 – Zhenfeng13 My-Blog Unrestricted File Upload Vulnerability

CVE-2024-13145 – Zhenfeng13 My-Blog Unrestricted File Upload Vulnerability