Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/02/05 5:39 a.m.6 views

CVE-2024-1600

A Local File Inclusion LFI vulnerability exists in the parisneo/lollms-webui application, specifically within the /personalities route. An attacker can exploit this vulnerability by crafting a URL that includes directory traversal sequences ../../ followed by the desired system file path, URL...

9.3CVSS9.1AI score0.31087EPSS
Exploits1References1
nvd
nvd
added 2024/04/10 5:15 p.m.9 views

CVE-2024-1600

A Local File Inclusion LFI vulnerability exists in the parisneo/lollms-webui application, specifically within the /personalities route. An attacker can exploit this vulnerability by crafting a URL that includes directory traversal sequences ../../ followed by the desired system file path, URL...

9.3CVSS9.2AI score0.31087EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2024/04/10 5:7 p.m.9 views

CVE-2024-1600 Local File Inclusion in parisneo/lollms-webui

A Local File Inclusion LFI vulnerability exists in the parisneo/lollms-webui application, specifically within the /personalities route. An attacker can exploit this vulnerability by crafting a URL that includes directory traversal sequences ../../ followed by the desired system file path, URL...

9.3CVSS6.8AI score0.31087EPSS
Exploits1References2
cvelist
cvelist
added 2024/04/10 5:7 p.m.15 views

CVE-2024-1600 Local File Inclusion in parisneo/lollms-webui

A Local File Inclusion LFI vulnerability exists in the parisneo/lollms-webui application, specifically within the /personalities route. An attacker can exploit this vulnerability by crafting a URL that includes directory traversal sequences ../../ followed by the desired system file path, URL...

9.3CVSS9.3AI score0.31087EPSS
Exploits1References2
cve
cve
added 2024/04/10 5:7 p.m.80 views

CVE-2024-1600

The CVE-2024-1600 vulnerability affects parisneo/lollms-webui, specifically the /personalities route, where improper validation of a filename used in include/require enables Local File Inclusion (LFI) via directory traversal (../../) to read arbitrary filesystem files accessible by the web server...

9.3CVSS8.9AI score0.31087EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder