2 matches found
Exploit for Cross-site Scripting in Flatpress
CVE Submissions Repository This repository contains informati...
CVE-2024-40422
The snapshotpath parameter in the /api/get-browser-snapshot endpoint in stitionai devika v1 is susceptible to a path traversal attack. An attacker can manipulate the snapshotpath parameter to traverse directories and access sensitive files on the server. This can potentially lead to unauthorized...