Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2024-40422
HistoryJul 24, 2024 - 12:00 a.m.

CVE-2024-40422

2024-07-2400:00:00
mitre
www.cve.org
5
snapshot_path parameter
stitionai devika v1
path traversal attack
unauthorized access
sensitive files
confidentiality
integrity

EPSS

0.067

Percentile

93.9%

JSON

The snapshot_path parameter in the /api/get-browser-snapshot endpoint in stitionai devika v1 is susceptible to a path traversal attack. An attacker can manipulate the snapshot_path parameter to traverse directories and access sensitive files on the server. This can potentially lead to unauthorized access to critical system files and compromise the confidentiality and integrity of the system.

Related

exploitdb 1
githubexploit 3
nvd 1
packetstorm 1
vulnrichment 1
nuclei 1
cve 1
zdt 1
openvas 1
exploitdb
exploitdb
Devika v1 - Path Traversal via 'snapshot_path'
2024-08-04 00:00:00
githubexploit
githubexploit
Exploit for Path Traversal in Stitionai Devika
2024-08-06 07:09:47
Exploit for Path Traversal in Stitionai Devika
2024-07-03 21:43:15
Exploit for Path Traversal in Stitionai Devika
2024-08-05 22:21:06
nvd
nvd
CVE-2024-40422
2024-07-24 16:15:07
packetstorm
packetstorm
Devika 1 Path Traversal
2024-08-05 00:00:00
vulnrichment
vulnrichment
CVE-2024-40422
2024-07-24 00:00:00
nuclei
nuclei
Devika v1 - Path Traversal
2024-08-05 17:49:38
cve
cve
CVE-2024-40422
2024-07-24 16:15:07
zdt
zdt
Devika v1 - Path Traversal via (snapshot_path) Exploit
2024-08-04 00:00:00
openvas
openvas
Generic HTTP Directory Traversal (Web Application URL Parameter) - Active Check
2017-09-26 00:00:00

EPSS

0.067

Percentile

93.9%

JSON
Related for CVELIST:CVE-2024-40422
exploitdb1githubexploit3nvd1packetstorm1vulnrichment1nuclei1cve1zdt1openvas1