cbcvebase.
CVE-2024-29368
published 2024-04-22

CVE-2024-29368: An arbitrary file upload vulnerability in the file handling module of moziloCMS v2.0 allows attackers to bypass extension restrictions via file renaming…

PriorityP340medium6.5CVSS 3.1
AVNACLPRHUINSUCHIHAN
EPSS
0.76%
50.6th percentile
An arbitrary file upload vulnerability in the file handling module of moziloCMS v2.0 allows attackers to bypass extension restrictions via file renaming, potentially leading to unauthorized file execution or storage of malicious content.

Affected

1 ranges
VendorProductVersion rangeFixed in
mozilomozilocms
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.