CVE-2024-3218 | Shibang Communications IP Network Intercom Broadcasting System 1.0 busyscreenshotpush.php jsondata[callee]/jsondata[imagename] path traversal

Posted by Angelo Barbosa | Apr 2, 2024 | CVE

A vulnerability classified as critical has been found in Shibang Communications IP Network Intercom Broadcasting System 1.0. This affects an unknown part of the file /php/busyscreenshotpush.php. The manipulation of the argument jsondata[callee]/jsondata[imagename] leads to path traversal: ‘../filedir’.

This vulnerability is uniquely identified as CVE-2024-3218. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-3218 | Shibang Communications IP Network Intercom Broadcasting System 1.0 busyscreenshotpush.php jsondata[callee]/jsondata[imagename] path traversal

Related Posts

CVE-2024-21744 | Mapster WP Maps Plugin up to 1.2.38 on WordPress cross site scripting

CVE-2024-6529 | Ultimate Classified Listings Plugin up to 1.3 on WordPress cross site scripting

CVE-2023-35635 | Microsoft denial of service

CVE-2024-34418 | Tech9logy Creators WPCS Plugin up to 1.1 on WordPress cross site scripting