CVE-2024-9981 | FormosaSoft ee-class prior 20240326.13r14494 filename control

Inserito da Angelo Barbosa | Ott 15, 2024 | CVE

A vulnerability was found in FormosaSoft ee-class. It has been classified as critical. This affects an unknown part. The manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is uniquely identified as CVE-2024-9981. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-9981 | FormosaSoft ee-class prior 20240326.13r14494 filename control

Post correlati

CVE-2024-3437 | SourceCodester Prison Management System 1.0 Avatar /Admin/add-admin.php avatar unrestricted upload

CVE-2024-33049 | Qualcomm Snapdragon Auto up to X65 5G Modem-RF System Beacon Frame buffer over-read

CVE-2023-7098 | icret EasyImages 2.8.3 app/hide.php key path traversal

CVE-2024-8963 | Ivanti CSA up to 4.6 Patch 518 path traversal