CVE-2024-5353 | anji-plus AJ-Report up to 1.4.1 ZIP File decompress path traversal

Inserito da Angelo Barbosa | Mag 25, 2024 | CVE

A vulnerability classified as critical has been found in anji-plus AJ-Report up to 1.4.1. This affects the function decompress of the component ZIP File Handler. The manipulation leads to path traversal.

This vulnerability is uniquely identified as CVE-2024-5353. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-5353 | anji-plus AJ-Report up to 1.4.1 ZIP File decompress path traversal

Post correlati

CVE-2023-49851 | Square Thumbnails Plugin up to 1.1.0 on WordPress authorization

CVE-2024-3480 | Motorola Framework prior 2023-09-01 Telephony implicit intent

CVE-2023-52890 | NTFS-3G libntfs-3g/unistr.c ntfs_uppercase_mbs use after free (Issue 84 / 75dcdc2)

CVE-2024-39884 | Apache HTTP Server AddType source code