CVE-2024-22724

CVE-2024-22724 · Severity

An issue was discovered in osCommerce v4, allows local attackers to bypass file upload restrictions and execute arbitrary code via administrator profile photo upload feature.

Learn more about our Web Application Penetration Testing UK.