CVE-2024-34315

CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the file_get_contents function in the fckedit_action method of /admin/template_admin.php. This vulnerability allows attackers to read arbitrary files.

CVSS

No CVSS.

References

Link	Resource
https://github.com/H3rmesk1t/vulnerability-paper/blob/main/CmsEasy-7.7.7.9-File%20Inclusion2.md

Configurations

No configuration.

History

07 May 2024, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-07 19:15

Updated : 2024-05-07 20:07

NVD link : CVE-2024-34315

Mitre link : CVE-2024-34315

CVE.ORG link : CVE-2024-34315

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-34315

Attach tags to `CVE-2024-34315`