CVE-2024-52400

Name of the Vulnerable Software and Affected Versions Subhasis Laha Gallerio versions n/a through 1.01

Description The issue allows an unrestricted upload of a file with a dangerous type, enabling the upload of a web shell to a web server. This can lead to potential security risks.

Recommendations For Subhasis Laha Gallerio versions n/a through 1.01, consider disabling the file upload feature until a patch is available to prevent the upload of malicious files. Restrict access to the web server to minimize the risk of exploitation. Avoid using the vulnerable version of Gallerio until a fixed version is released. At the moment, there is no information about a newer version that contains a fix for this vulnerability.