CVE-2024-6139 | parisneo lollms up to 9.6 tts_to_file path traversal

Inserito da Angelo Barbosa | Giu 27, 2024 | CVE

A vulnerability has been found in parisneo lollms up to 9.6 and classified as critical. This vulnerability affects the function tts_to_file. The manipulation leads to path traversal: ‘..filename’.

This vulnerability was named CVE-2024-6139. The attack can be initiated remotely. There is no exploit available.

CVE-2024-6139 | parisneo lollms up to 9.6 tts_to_file path traversal

Post correlati

CVE-2024-32429 | WPChill Remove Footer Credit Plugin up to 1.0.13 on WordPress cross site scripting

CVE-2024-21916 | Rockwell Automation ControlLogix 5570/GuardLogix 5570 memory corruption (icsa-24-030-05)

CVE-2024-38360 | Discourse up to 3.3.0.beta2/3.2.2 resource consumption

CVE-2024-7135 | Tainacan Plugin up to 0.21.7 on WordPress authorization