VYPR
Unrated severityNVD Advisory· Published Apr 29, 2024· Updated Aug 2, 2024

CVE-2024-33438

CVE-2024-33438

Description

File Upload vulnerability in CubeCart before 6.5.5 allows an authenticated user to execute arbitrary code via a crafted .phar file.

Affected products

2
  • Cubecart/Cubecartcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <6.5.5

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.