CVE-2024-34906
5.4MEDIUMAn arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file.
Publicado: 5/15/2024Atualizado: 11/21/2024
Descrição
An arbitrary file upload vulnerability in dootask v0.30.13 allows attackers to execute arbitrary code via uploading a crafted PDF file.
Análise IADesenvolvido por IA
Produtos Afetados
dootaskdootask
0.30.13
Referências
- https://github.com/kuaifan/dootask/issues/210ExploitThird Party Advisory
- https://github.com/kuaifan/dootask/issues/210ExploitThird Party Advisory