CVE-2024-44849

CRITICAL EXPLOITED NUCLEI

Qualitor <8.24 - RCE

Title source: llm

Description

Qualitor up to 8.24 is vulnerable to Remote Code Execution (RCE) via Arbitrary File Upload in checkAcesso.php.

Exploits (1)

nomisec SUSPICIOUS 5 stars
by extencil · remote
https://github.com/extencil/CVE-2024-44849

Nuclei Templates (1)

Qualitor <= 8.24 - Remote Code Execution
CRITICALVERIFIEDby s4e-io
FOFA: Qualitor

References (3)

Scores

CVSS v3 9.8
EPSS 0.9207
EPSS Percentile 99.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2024-10-08
CWE
CWE-434
Status published
Products (2)
qualitor/qualitor 8.20
qualitor/qualitor 8.24
Published Sep 09, 2024
Tracked Since Feb 18, 2026