Vulnerability — CVE-2024-24350

CVE-2024-24350

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2024-24350
Description:: File Upload vulnerability in Software Publico e-Sic Livre v.2.0 and before allows a remote attacker to execute arbitrary code via the extension filtering component.
Last updated date:: 02/14/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/14/2024
Reference url to background: https://medium.com/%40viniciuspinheiros/e-sic-livre-2-0-authenticated-file-upload-leads-to-remote-code-execution-rce-5937c9537258