CVE-2024-52369

Name of the Vulnerable Software and Affected Versions KBucket versions n/a through 4.1.6

Description The issue allows for the unrestricted upload of files with dangerous types, enabling the upload of a web shell to a web server. This can be exploited to gain unauthorized access to the server.

Recommendations For KBucket versions n/a through 4.1.6, update to a version later than 4.1.6 to resolve the issue. As a temporary workaround, consider restricting file uploads to only allow safe file types until a patch is available. Restrict access to the web server to minimize the risk of exploitation.