Security Advisory

CVE-2024-33120

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-07 00:00:00

Last updated 2024-08-02 02:27:53

Assigner mitre

State PUBLISHED

Description

Roothub v2.5 was discovered to contain an arbitrary file upload vulnerability via the customPath parameter in the upload() function. This vulnerability allows attackers to execute arbitrary code via a crafted JSP file.

← Browse all CVEs View on cve.org ↗