Security Advisory

CVE-2024-58281

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-10 21:13:56

Last updated 2026-04-07 14:08:34

Assigner VulnCheck

State PUBLISHED

Description

Dotclear 2.29 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files through the media upload functionality. Attackers can exploit the file upload process by crafting a PHP shell with a command execution form to gain system access through the uploaded file.

← Browse all CVEs View on cve.org ↗