CVE-2016-15038 | NUUO NVRmini 2 up to 3.0.8 /deletefile.php filename path traversal (Exploit 40214)

Inserito da Angelo Barbosa | Mar 30, 2024 | CVE

A vulnerability, which was classified as critical, was found in NUUO NVRmini 2 up to 3.0.8. Affected is an unknown function of the file /deletefile.php. The manipulation of the argument filename leads to path traversal.

This vulnerability is traded as CVE-2016-15038. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2016-15038 | NUUO NVRmini 2 up to 3.0.8 /deletefile.php filename path traversal (Exploit 40214)

Post correlati

CVE-2024-2452 | Eclipse ThreadX up to 6.3.x __portable_aligned_alloc buffer overflow

CVE-2024-1179 | TP-Link Omada ER605 DHCPv6 Client Options stack-based overflow

CVE-2024-37831 | itsourcecode Payroll Management System 1.0 payroll_items.php ID sql injection

CVE-2022-48793 | Linux Kernel up to 5.15.24/5.16.10 nSVM nested_svm_load_cr3 initialization (74b426bea4f7/352193edda48/e1779c2714c3)