Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:33 a.m.19 views

CVE-2024-42485

Filament Excel enables excel export for Filament admin resources. The export download route /filament-excel/path allowed downloading any file without login when the webserver allows ../ in the URL. Patched with Version v2.3.3...

7.5CVSS7.5AI score0.0057EPSS
Exploits0References1
NVD
NVD
added 2024/08/12 4:15 p.m.61 views

CVE-2024-42485

Filament Excel enables excel export for Filament admin resources. The export download route /filament-excel/path allowed downloading any file without login when the webserver allows ../ in the URL. Patched with Version v2.3.3...

7.5CVSS0.0057EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/12 3:39 p.m.18 views

CVE-2024-42485 Filament Excel Vulnerable to Path Traversal Attack on Export Download Endpoint

Filament Excel enables excel export for Filament admin resources. The export download route /filament-excel/path allowed downloading any file without login when the webserver allows ../ in the URL. Patched with Version v2.3.3...

7.5CVSS6.9AI score0.0057EPSS
Exploits0References2
CVE
CVE
added 2024/08/12 3:39 p.m.55 views

CVE-2024-42485

CVE-2024-42485 affects Filament Excel. The vulnerability exists in the export download route /filament-excel/{path}, where an attacker could leverage directory traversal using ../ to download arbitrary files without authentication when the webserver allows such paths. This could disclose sensitiv...

7.5CVSS7.5AI score0.0057EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder