Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-57761

An arbitrary file upload vulnerability in the parserXML() method of JeeWMS before v2025.01.01 allows attackers to execute arbitrary code via uploading a crafted file.

Published

2025-01-15T00:15:33.890

Last Modified

2025-09-11T21:13:03.763

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.1 (HIGH)

Weaknesses

Type: Secondary
CWE-434

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	huayi-tec	jeewms	< 2025-01-01	Yes

References

https://gitee.com/erzhongxmu/JEEWMS/issues/IBFTZ7 Exploit, Issue Tracking ([email protected])