VYPR

magicflue

by magicflue

CVEs (1)

  • CVE-2024-28441CriMar 22, 2024
    risk 0.64cvss 9.8epss 0.01

    File Upload vulnerability in magicflue v.7.0 and before allows a remote attacker to execute arbitrary code via a crafted request to the messageid parameter of the mail/mailupdate.jsp endpoint.