CVE-2024-34314

CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the file_get_contents function in the fetch_action method of /admin/template_admin.php. This vulnerability allows attackers to read arbitrary files.

CVSS

No CVSS.

References

Link	Resource
https://github.com/H3rmesk1t/vulnerability-paper/blob/main/CmsEasy-7.7.7.9-File%20Inclusion.md

Configurations

No configuration.

History

07 May 2024, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-07 19:15

Updated : 2024-05-07 20:07

NVD link : CVE-2024-34314

Mitre link : CVE-2024-34314

CVE.ORG link : CVE-2024-34314

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-34314

Attach tags to `CVE-2024-34314`