Unrated severityNVD Advisory· Published Jun 12, 2024· Updated Aug 1, 2024

Remote Code Execution in MegaBIP

CVE-2024-1577

Description

Remote Code Execution vulnerability in MegaBIP software allows to execute arbitrary code on the server without requiring authentication by saving crafted by the attacker PHP code to one of the website files. This issue affects MegaBIP software versions through 5.11.2.

Affected products

Megabip/Megabipllm-fuzzy
Range: <=5.11.2
Jan Syski/MegaBIPv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert.pl/en/posts/2024/06/CVE-2024-1576/mitrethird-party-advisory
cert.pl/posts/2024/06/CVE-2024-1576/mitrethird-party-advisory
megabip.plmitreproduct
www.gov.pl/web/cyfryzacja/rekomendacja-pelnomocnika-rzadu-ds-cyberbezpieczenstwa-dotyczaca-biuletynow-informacji-publicznejmitregovernment-resource

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000