CVE-2024-31819 | WWBN Avideo up to 12.4/14.2 submitIndex.php systemRootPath Privilege Escalation

Inserito da Angelo Barbosa | Apr 10, 2024 | CVE

A vulnerability was found in WWBN Avideo up to 12.4/14.2. It has been classified as critical. Affected is an unknown function of the file submitIndex.php. The manipulation of the argument systemRootPath leads to Privilege Escalation.

This vulnerability is traded as CVE-2024-31819. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-31819 | WWBN Avideo up to 12.4/14.2 submitIndex.php systemRootPath Privilege Escalation

Post correlati

CVE-2024-30807 | Axiomatic Bento4 1.6.0-641-2-g1529b83 Ap4Atom.cpp ~AP4_UnknownAtom denial of service

CVE-2024-29194 | OneUptime 7.0.1803 is_master_admin authorization (GHSA-246p-xmg8-wmcq)

CVE-2024-28297 | AzureSoft MyHorus 4.3.5 sql injection

CVE-2024-22408 | Shopware up to 6.5.7.3 Flow Builder server-side request forgery (GHSA-3535-m8vh-vrmw)