CVE-2025-24786 | clidey whodb prior 0.45.0 /db Join path traversal (GHSA-9r4c-jwx3-3j76)

Inserito da Angelo Barbosa | Feb 6, 2025 | CVE

A vulnerability, which was classified as critical, was found in clidey whodb. This affects the function Join of the file /db. The manipulation leads to path traversal: ‘…/…//’.

This vulnerability is uniquely identified as CVE-2025-24786. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-24786 | clidey whodb prior 0.45.0 /db Join path traversal (GHSA-9r4c-jwx3-3j76)

Post correlati

CVE-2024-24402 | Nagios XI 2024R1.01 npcd cross site scripting

CVE-2025-6543 | Citrix NetScaler ADC/NetScaler Gateway prior 13.1-37.236-FIPS/13.1-59.19/14.1-47.46 memory corruption (CTX694788)

CVE-2024-6766 | WP-FeedStats shortcodes-ultimate-pro Plugin up to 7.2.0 on WordPress Shortcode Attribute cross site scripting

CVE-2023-7078 | Cloudflare miniflare prior 3.20231030.2 HTTP Request server-side request forgery