CVE-2024-2362 | parisneo lollms-webui up to 9.3 on Windows Request del_preset absolute path traversal

Posted by Angelo Barbosa | Jun 6, 2024 | CVE

A vulnerability, which was classified as critical, was found in parisneo lollms-webui up to 9.3 on Windows. This affects an unknown part of the file del_preset of the component Request Handler. The manipulation leads to absolute path traversal.

This vulnerability is uniquely identified as CVE-2024-2362. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-2362 | parisneo lollms-webui up to 9.3 on Windows Request del_preset absolute path traversal

Related Posts

CVE-2024-37632 | TOTOLINK A3700R 9.1.2u.6165_20211012 loginAuth password stack-based overflow

CVE-2024-7353 | Accept Stripe Payments Plugin up to 2.0.86 on WordPress Shortcode accept_stripe_payment_ng cross site scripting

CVE-2024-23492 | Commend WS203VICM up to 1.7 weak encoding for password (icsa-24-051-01)

CVE-2023-49394 | Zentao up to 4.1.3 redirect