CVE-2024-34555
CRITICALURBAN BASE Z-Downloads <1.11.3 - Unrestricted Upload
Title source: llmDescription
Unrestricted Upload of File with Dangerous Type vulnerability in URBAN BASE Z-Downloads.This issue affects Z-Downloads: from n/a through 1.11.3.
Exploits (1)
github
WORKING POC
3 stars
by certuscyber · pythonpoc
https://github.com/certuscyber/cve-pocs/tree/main/CVE-2024-34555
Scores
CVSS v3
9.1
EPSS
0.0791
EPSS Percentile
92.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-434
Status
published
Products (1)
URBAN BASE/Z-Downloads
< 1.11.3
Published
May 14, 2024
Tracked Since
Feb 18, 2026