VYPR
Critical severity9.8NVD Advisory· Published Mar 22, 2024· Updated Jun 17, 2026

CVE-2024-28441

CVE-2024-28441

Description

File Upload vulnerability in magicflue v.7.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.