CVE-2024-34906
5.4MEDIUMAn arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file.
Publicado: 5/15/2024Actualizado: 11/21/2024
Descripción
An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file.
Análisis IAImpulsado por IA
Productos Afectados
dootaskdootask
0.30.13
Referencias
- https://github.com/kuaifan/dootask/issues/210ExploitThird Party Advisory
- https://github.com/kuaifan/dootask/issues/210ExploitThird Party Advisory