CVE-2024-42485 | pxlrbt filament-excel up to 2.3.2 /filament-excel/{path} path traversal

Inserito da Angelo Barbosa | Ago 12, 2024 | CVE

A vulnerability was found in pxlrbt filament-excel up to 2.3.2. It has been rated as critical. This issue affects some unknown processing of the file /filament-excel/{path}. The manipulation leads to path traversal.

The identification of this vulnerability is CVE-2024-42485. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-42485 | pxlrbt filament-excel up to 2.3.2 /filament-excel/{path} path traversal

Post correlati

CVE-2024-22819 | FlyCMS 1.0 email_templets_update cross-site request forgery

CVE-2024-28757 | libexpat up to 2.6.1 XML_ExternalEntityParserCreate xml external entity reference (Issue 839)

CVE-2024-40456 | ThinkSAAS 3.7.0 update.php name sql injection

CVE-2024-41473 | Tenda FH1201 1.2.0.14 ip/goform/WriteFacMac mac command injection