CVE-2024-43797 | advplyr audiobookshelf up to 2.12.x Role-Based Access Control path traversal

Inserito da Angelo Barbosa | Set 2, 2024 | CVE

A vulnerability classified as critical has been found in advplyr audiobookshelf up to 2.12.x. This affects an unknown part of the component Role-Based Access Control. The manipulation leads to path traversal.

This vulnerability is uniquely identified as CVE-2024-43797. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-43797 | advplyr audiobookshelf up to 2.12.x Role-Based Access Control path traversal

Post correlati

CVE-2024-33647 | Siemens Polarion ALM prior 2404.0 Query Engine access control (ssa-925850)

CVE-2024-2707 | Tenda AC10U 15.03.06.49 /goform/WriteFacMac formWriteFacMac mac os command injection

CVE-2024-22399 | Apache Seata up to 1.8.0/2.0.0 deserialization

CVE-2024-28662 | Piwigo up to 14.2.x functions.php create_tag cross site scripting (GHSA-8g2g-6f2c-6h7j)