A vulnerability, which was classified as critical , has been found in background-image-cropper Background Image Cropper 1.2 . This issue affects some unknown processing of the file ups.php of the component PHP File Handler . Performing a manipulation results in unrestricted upload. This vulnerability was named CVE-2024-58348 . The attack may be initiated remotely. In addition, an exploit is available.