CVE advisoryCRITICAL
CVE-2024-33120
Roothub 2.5 Arbitrary File Upload Vulnerability.
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A critical arbitrary file upload vulnerability in Roothub allows unauthenticated attackers to execute arbitrary code by uploading a crafted file. This impacts web application integrity and can lead to server compromise when the application is network-reachable. Confirming the use and exposure of this technology is impo