Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.8.
History

Thu, 05 Dec 2024 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Tassosgr
Tassosgr convert Forms
CPEs cpe:2.3:a:tassos.gr:convert_forms_component_for_joomia:*:*:*:*:*:*:*:* cpe:2.3:a:tassosgr:convert_forms:*:*:*:*:*:joomla\!:*:*
Vendors & Products Tassos.gr
Tassos.gr convert Forms Component For Joomia
Tassosgr
Tassosgr convert Forms

Thu, 05 Dec 2024 17:15:00 +0000

Type Values Removed Values Added
First Time appeared Tassos.gr
Tassos.gr convert Forms Component For Joomia
CPEs cpe:2.3:a:tassos.gr:convert_forms_component_for_joomia:*:*:*:*:*:*:*:*
Vendors & Products Tassos.gr
Tassos.gr convert Forms Component For Joomia
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 04 Dec 2024 16:30:00 +0000

Type Values Removed Values Added
Description Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.6. Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.8.
Title Extension - tassos.gr - Unrestricted file upload in Convert Forms component for Joomla < 4.4.6 Extension - tassos.gr - Unrestricted file upload in Convert Forms component for Joomla < 4.4.8

Wed, 04 Dec 2024 15:15:00 +0000

Type Values Removed Values Added
Description Unrestricted file upload via security bypass in Convert Forms component for Joomla in versions before 4.4.6.
Title Extension - tassos.gr - Unrestricted file upload in Convert Forms component for Joomla < 4.4.6
Weaknesses CWE-434
References

cve-icon MITRE

Status: PUBLISHED

Assigner: Joomla

Published: 2024-12-04T15:01:50.739Z

Updated: 2024-12-23T04:34:18.706Z

Reserved: 2024-07-09T16:16:21.863Z

Link: CVE-2024-40744

cve-icon Vulnrichment

Updated: 2024-12-05T17:05:15.845Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-12-04T15:15:11.057

Modified: 2024-12-05T17:15:11.570

Link: CVE-2024-40744

cve-icon Redhat

No data.