CVE-2024-31220 | LizardByte Sunshine 0.16.x/0.17.x node_modules Endpoint path traversal (GHSA-6rg7-7m3w-w5wc)

Inserito da Angelo Barbosa | Apr 5, 2024 | CVE

A vulnerability was found in LizardByte Sunshine 0.16.x/0.17.x. It has been rated as critical. This issue affects some unknown processing of the component node_modules Endpoint. The manipulation leads to path traversal.

The identification of this vulnerability is CVE-2024-31220. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31220 | LizardByte Sunshine 0.16.x/0.17.x node_modules Endpoint path traversal (GHSA-6rg7-7m3w-w5wc)

Post correlati

CVE-2024-5709 | WPBakery Plugin up to 7.7 on WordPress file inclusion

CVE-2024-45135 | Adobe Commerce up to 2.4.7-p2/2.4.6-p7/2.4.5-p9/2.4.4-p10 access control (apsb24-73)

CVE-2024-35085 | J2EEFAST 2.7.0 ProcessDefinitionMapper.xml findPage sql injection

CVE-2023-48712 | warp-tech warpgate up to 0.8.x authorization (GHSA-c94j-vqr5-3mxr)