VYPR
Critical severity9.8NVD Advisory· Published May 23, 2024· Updated Jun 17, 2026

CVE-2024-35570

CVE-2024-35570

Description

An arbitrary file upload vulnerability in the component \controller\ImageUploadController.class of inxedu v2.0.6 allows attackers to execute arbitrary code via uploading a crafted jsp file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Inxedu/Inxeducpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =2.0.6

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.