CVE-2024-22567

mingSoft MCMS File Upload vulnerability in maven/net.mingsoft/ms-mcms

Identifiers

GHSA-7qw4-9r68-2rmx, CVE-2024-22567

Package Slug

maven/net.mingsoft/ms-mcms

Vulnerability

mingSoft MCMS File Upload vulnerability

Description

File Upload vulnerability in MCMS 5.3.5 allows attackers to upload arbitrary files via crafted POST request to /ms/file/upload.do.

Affected Versions

All versions up to 5.3.5

Solution

Unfortunately, there is no solution available yet.

Last Modified

2024-02-06

source