CVE-2024-31450 | Owncast up to 0.1.2 Administrator API /api/admin path traversal (GHSL-2023-277)

Posted by Angelo Barbosa | Apr 19, 2024 | CVE

A vulnerability has been found in Owncast up to 0.1.2 and classified as problematic. This vulnerability affects unknown code of the file /api/admin of the component Administrator API. The manipulation leads to path traversal.

This vulnerability was named CVE-2024-31450. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31450 | Owncast up to 0.1.2 Administrator API /api/admin path traversal (GHSL-2023-277)

Related Posts

CVE-2023-49298 | OpenZFS up to 2.1.13/2.2.1 /etc/hosts.deny access control (ID 15526)

CVE-2024-7157 | TOTOLINK A3100R 4.1.2cu.5050_B20200504 cstecgi.cgi getSaveConfig http_host buffer overflow

CVE-2024-6731 | SourceCodester Student Study Center Desk Management System 1.0 Master.php id sql injection

CVE-2023-51034 | Totolink EX1200L 9.3.5u.6146_B20201023 cstecgi.cgi UploadFirmwareFile Privilege Escalation