VYPR
Critical severity9.8NVD Advisory· Published Aug 12, 2024· Updated Apr 15, 2026

CVE-2024-41577

CVE-2024-41577

Description

An arbitrary file upload vulnerability in the Ueditor component of productinfoquick v1.0 allows attackers to execute arbitrary code via uploading a crafted PNG file.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.