CVE-2024-33369 | Plasmoapp RPShare Fabric mod 1.0.0 DownloadTask getFileNameFromConnection path traversal

Inserito da Angelo Barbosa | Set 27, 2024 | CVE

A vulnerability has been found in Plasmoapp RPShare Fabric mod 1.0.0 and classified as critical. This vulnerability affects the function getFileNameFromConnection of the component DownloadTask. The manipulation leads to path traversal.

This vulnerability was named CVE-2024-33369. The attack can be initiated remotely. There is no exploit available.

CVE-2024-33369 | Plasmoapp RPShare Fabric mod 1.0.0 DownloadTask getFileNameFromConnection path traversal

Post correlati

CVE-2024-9543 | Powerpress Plugin up to 11.9.18 on WordPress Shortcode skipto cross site scripting

CVE-2024-28109 | veraPDF-library up to 1.24.1 XSL Transform xml injection

CVE-2024-6447 | FULL Plugin up to 3.1.12 on WordPress Parameter License Plan cross site scripting

CVE-2024-29230 | Synology Surveillance Station prior 9.2.0-9289/9.2.0-11289 WebAPI SnapShot.CountByCategory sql injection (SA_24_04)