2024-52 Java Security Weekly News
2025 » Published on January 10, 2025
 | Java CVEs |
| N/A | CVE-2024-55078 An arbitrary file upload vulnerability in the component /adminUser/updateImg of WukongCRM-11.0-JAVA v11.3.3 allows attackers to execute arbitrary code via uploading a crafted file. Published Friday, January 3, 2025 |
| N/A | CVE-2025-0202 A vulnerability was found in TCS BaNCS 10. It has been classified as problematic. This affects an unknown part of the file /REPORTS/REPORTS_SHOW_FILE.jsp. The manipulation of the argument FilePath leads to file inclusion. Published Saturday, January 4, 2025 |