PT-2024-31258 · D Zero Co. · Basercms +2

Name of the Vulnerable Software and Affected Versions: baserCMS plugin in D-ZERO CO., LTD. BurgerEditor and BurgerEditor Limited Edition versions prior to 2.25.1 Description: A directory listing issue allows remote attackers to obtain sensitive information by exposing a list of the uploaded files...

baserCMS plugin "BurgerEditor" vulnerable to directory listing

Overview baserCMS plugin "BurgerEditor" provided by D-ZERO CO.,LTD. contains a directory listing vulnerability CWE-548, CVE-2024-44807. If accessing a URL of the web site using the plugin that has a specific string added to the end, a list of uploaded files may be obtained. In addition, the...

D-Zero BurgerEditor 安全漏洞

D-Zero BurgerEditor is a convenient plug-in for domestic baserCMS suitable for corporate websites from Japan's D-Zero, which allows you to add, edit and move content intuitively and create sites without any Web knowledge. A security vulnerability exists in D-Zero BurgerEditor versions prior to...

JVN#54676967: baserCMS plugin "BurgerEditor" vulnerable to directory listing

baserCMS plugin "BurgerEditor" provided by D-ZERO CO.,LTD. contains a directory listing vulnerability CWE-548, CVE-2024-44807. If accessing a URL of the web site using the plugin that has a specific string added to the end, a list of uploaded files may be obtained. In addition, the uploaded file...