CVE-2024-48069 Information

Description

A remote code execution (RCE) vulnerability in the component /inventory/doCptimpoptInventory of Weaver Ecology v9. allows attackers to execute arbitrary code via injecting a crafted payload into the name of an uploaded file.

Reference

https://github.com/stuven1989/TemporaryGuild/blob/main/guild2.md https://gist.github.com/CoinIsMoney/5dd555805e8f974630ced8a1df8182f1