5 matches found
CVE-2024-1600
A Local File Inclusion LFI vulnerability exists in the parisneo/lollms-webui application, specifically within the /personalities route. An attacker can exploit this vulnerability by crafting a URL that includes directory traversal sequences ../../ followed by the desired system file path, URL...
CVE-2024-1600
A Local File Inclusion LFI vulnerability exists in the parisneo/lollms-webui application, specifically within the /personalities route. An attacker can exploit this vulnerability by crafting a URL that includes directory traversal sequences ../../ followed by the desired system file path, URL...
CVE-2024-1600 Local File Inclusion in parisneo/lollms-webui
A Local File Inclusion LFI vulnerability exists in the parisneo/lollms-webui application, specifically within the /personalities route. An attacker can exploit this vulnerability by crafting a URL that includes directory traversal sequences ../../ followed by the desired system file path, URL...
CVE-2024-1600
The CVE-2024-1600 vulnerability affects parisneo/lollms-webui, specifically the /personalities route, where improper validation of a filename used in include/require enables Local File Inclusion (LFI) via directory traversal (../../) to read arbitrary filesystem files accessible by the web server...
CVE-2024-1600 Local File Inclusion in parisneo/lollms-webui
A Local File Inclusion LFI vulnerability exists in the parisneo/lollms-webui application, specifically within the /personalities route. An attacker can exploit this vulnerability by crafting a URL that includes directory traversal sequences ../../ followed by the desired system file path, URL...