CVE-2023-1501 – A vulnerability, which was classified as critical, was found in RockOA 2.3.2. This affects …

19 March 2023

Vuln ID: CVE-2023-1501

Published: 2023-03-19 20:15:19Z

Description: A vulnerability, which was classified as critical, was found in RockOA 2.3.2. This affects the function runAction of the file acloudCosAction.php.SQL. The manipulation of the argument fileid leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-223401 was assigned to this vulnerability.

Source: NVD.NIST.GOV

Date:

19 March 2023

Categorie(s):

NVD

Tag(s):

NVD

Win 95, LastPass, Kubernetes, Sandworm, Bloomtech, Frontier, 911, Aaran Leyland… – SWN #37919 April 2024
5.3M World-Check records may be leaked; how to check your records19 April 2024
Sacramento airport goes no-fly after AT&T internet cable snipped19 April 2024
Active adversary report: Ransomware hit a ceiling, but security teams at risk for more pain19 April 2024
Akira takes in $42 million in ransom payments, now targets Linux servers19 April 2024