CVE-2024-11210 | EyouCMS 1.51 FilemanagerLogic.php editFile activepath path traversal

A vulnerability was found in EyouCMS 1.51. It has been rated as critical. This issue affects the function editFile of the file application/admin/logic/FilemanagerLogic.php. The manipulation of the argument activepath leads to path traversal.

The identification of this vulnerability is CVE-2024-11210. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-11210 | EyouCMS 1.51 FilemanagerLogic.php editFile activepath path traversal

Related Posts

CVE-2024-6855 | WP MultiTasking Plugin up to 0.1.12 on WordPress Exit Popup Update cross-site request forgery

CVE-2024-9267 | optinhound Easy Subscribe Plugin up to 1.4.3 on WordPress add_query_arg cross site scripting

CVE-2023-47875 | Perfmatters Plugin up to 2.1.6 on WordPress cross-site request forgery

CVE-2023-51779 | Linux Kernel up to 6.6.8 af_bluetooth.c bt_sock_recvmsg use after free