4 matches found
CVE-2024-6985
A path traversal vulnerability exists in the api openpersonalityfolder endpoint of parisneo/lollms-webui. This vulnerability allows an attacker to read any folder in the personalityfolder on the victim's computer, even though sanitizepath is set. The issue arises due to improper sanitization of t...
CVE-2024-6985
creationtimestamp| type| source ---|---|--- 2024-10-11 18:42:38+00:00| seen| https://t.me/cvedetector/7696...
CVE-2024-6985 Path Traversal in api open_personality_folder in parisneo/lollms-webui
A path traversal vulnerability exists in the api openpersonalityfolder endpoint of parisneo/lollms-webui. This vulnerability allows an attacker to read any folder in the personalityfolder on the victim's computer, even though sanitizepath is set. The issue arises due to improper sanitization of t...
CVE-2024-6985 Path Traversal in api open_personality_folder in parisneo/lollms-webui
A path traversal vulnerability exists in the api openpersonalityfolder endpoint of parisneo/lollms-webui. This vulnerability allows an attacker to read any folder in the personalityfolder on the victim's computer, even though sanitizepath is set. The issue arises due to improper sanitization of t...