CVE-2024-55970 | Syncfusion Essential Studio for ASP.NET MVC up to 27.1.54 Parameter request path traversal

Posted by Angelo Barbosa | Dec 15, 2024 | CVE

A vulnerability classified as critical was found in Syncfusion Essential Studio for ASP.NET MVC up to 27.1.54. This vulnerability affects unknown code of the component Parameter Handler. The manipulation of the argument request leads to path traversal.

This vulnerability was named CVE-2024-55970. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-55970 | Syncfusion Essential Studio for ASP.NET MVC up to 27.1.54 Parameter request path traversal

Related Posts

CVE-2023-7294 | paytiumsupport Paytium Plugin up to 4.3.7 on WordPress create_mollie_profile authorization

CVE-2024-36857 | Jan 0.4.12 /v1/app/readFileSync path traversal

CVE-2024-51785 | I Thirteen Web Solution Responsive Filterable Portfolio Plugin up to 1.0.22 on WordPress server-side request forgery

CVE-2023-44294 | Dell Secure Connect Gateway-Application up to 5.18.00.00 Collection REST API sql injection (dsa-2023-403)