CVE ID

CVE-2024-28749

Severity

7.2

Vulnerability Type

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)

Summary

A remote attacker with high privileges may use a writing file function to inject OS commands.