CVE-2024-8940 Information

Description

Vulnerability in the Scriptcase application version 9.4.019 which involves the arbitrary upload of a file via /scriptcase/devel/lib/third/jquery_plugin/jQuery-File-Upload/server/php/ via a POST request. An attacker could upload malicious files to the server due to the application not properly verifying user input.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-scriptcase