CVE-2025-24786 | clidey whodb prior 0.45.0 /db Join path traversal (GHSA-9r4c-jwx3-3j76)

Inserito da Angelo Barbosa | Feb 6, 2025 | CVE

A vulnerability, which was classified as critical, was found in clidey whodb. This affects the function Join of the file /db. The manipulation leads to path traversal: ‘…/…//’.

This vulnerability is uniquely identified as CVE-2025-24786. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-24786 | clidey whodb prior 0.45.0 /db Join path traversal (GHSA-9r4c-jwx3-3j76)

Post correlati

CVE-2024-34158 | Google Go up to 1.22.6/1.23.0 go-build-constraint resource consumption

CVE-2024-21607 | Juniper Junos OS on MX/EX9200 UI unimplemented or unsupported feature in ui (JSA75748)

CVE-2024-12899 | 1000 Projects Attendance Tracking Management System 1.0 /admin/course_action.php course_code sql injection

CVE-2024-28176 | jose JWE resource consumption