CVE-2024-34906
5.4MEDIUMAn arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file.
Veröffentlicht: 5/15/2024Aktualisiert: 11/21/2024
Beschreibung
An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file.
KI-AnalyseKI-gestützt
Betroffene Produkte
dootaskdootask
0.30.13
Referenzen
- https://github.com/kuaifan/dootask/issues/210ExploitThird Party Advisory
- https://github.com/kuaifan/dootask/issues/210ExploitThird Party Advisory