CVE-2024-48646

Name of the Vulnerable Software and Affected Versions Sage 1000 version 7.0.0

Description The issue allows authorized users to upload files without proper validation, which can be exploited by uploading malicious files, such as HTML, scripts, or other executable content. This could lead to the execution of these files on the server and result in further system compromise.

Recommendations For Sage 1000 version 7.0.0, consider restricting file uploads to only authorized and validated files to prevent potential exploitation. As a temporary workaround, restrict access to the file upload feature until a proper validation mechanism is implemented.