Skip to main content

CVE-2024-29272

Description

Arbitrary File Upload vulnerability in VvvebJs before version 1.7.5, allows unauthenticated remote attackers to execute arbitrary code and obtain sensitive information via the sanitizeFileName parameter in save.php.

NVD
Severity: N/A
CVE ID: CVE-2024-29272
CVSS Score: N/A
CVSS Metrics: NVD assessment not yet provided.

Refrence: NVDMITRE

Proof Of Concept

awjkjflkwlekfdjs

Refrence: GitHub

Last updated on by Vulnerability_bot_v1.3.8