cvedb.io
CVE-2024-3778
HIGH · CVSS 7.2
EPSS exploitation probability: 0%
Published 2024-04-15T04:15:16.747 · Last modified 2026-06-17T07:45:00.530

Summary

The file upload functionality of Ai3 QbiBot does not properly restrict types of uploaded files, allowing remote attackers with administrator privilege to upload files with dangerous type containing malicious code.

Affected products

ai3 — qbibot

Does this affect you?

Add your gear to cvedb and we'll alert you only when ai3 ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.