CVE-2024-1027
SourceCodester Facebook News Feed Like Post unrestricted upload
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability, which was classified as critical, was found in SourceCodester Facebook News Feed Like 1.0. Affected is an unknown function of the component Post Handler. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-252300.
Una vulnerabilidad fue encontrada en SourceCodester Facebook News Feed Like 1.0 y clasificada como crítica. Una función desconocida del componente Post Handler es afectada por esta vulnerabilidad. La manipulación conduce a una carga sin restricciones. Es posible lanzar el ataque de forma remota. El identificador de esta vulnerabilidad es VDB-252300.
Es wurde eine Schwachstelle in SourceCodester Facebook News Feed Like 1.0 gefunden. Sie wurde als kritisch eingestuft. Es betrifft eine unbekannte Funktion der Komponente Post Handler. Durch Manipulation mit unbekannten Daten kann eine unrestricted upload-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2024-01-29 CVE Reserved
- 2024-01-30 CVE Published
- 2024-02-06 EPSS Updated
- 2024-08-01 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-434: Unrestricted Upload of File with Dangerous Type
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://vuldb.com/?id.252300 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oretnom23 Search vendor "Oretnom23" | Facebook News Feed Like Search vendor "Oretnom23" for product "Facebook News Feed Like" | 1.0 Search vendor "Oretnom23" for product "Facebook News Feed Like" and version "1.0" | - |
Affected
| ||||||