CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Roothub: >> Roothub >> 2.5.0 Security Vulnerabilities

CVE-2024-33120

Roothub v2.5 was discovered to contain an arbitrary file upload vulnerability via the customPath parameter in the upload() function. This vulnerability allows attackers to execute arbitrary code via a crafted JSP file.

CVSS Score

9.8

EPSS Score

0.002

Published

2024-05-07

Page 1

Vulnerabilities

Vulnerable Software

Roothub: >> Roothub >> 2.5.0 Security Vulnerabilities

Products

Pricing

Contact Us