Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/15 12:10 a.m.26 views

CVE-2024-48766

NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redirect, and because of factors related to strpos and directory traversal, as exploited in the wild in May 2025. This is related to components/logs.php...

8.6CVSS6.4AI score0.68616EPSS
Exploits1References1
NVD
NVD
added 2025/05/13 4:15 p.m.31 views

CVE-2024-48766

NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redirect, and because of factors related to strpos and directory traversal, as exploited in the wild in May 2025. This is related to components/logs.php...

8.6CVSS0.68616EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/05/13 12:0 a.m.8 views

CVE-2024-48766

NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redirect, and because of factors related to strpos and directory traversal, as exploited in the wild in May 2025. This is related to components/logs.php...

8.6CVSS8.5AI score0.68616EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/05/13 12:0 a.m.92 views

CVE-2024-48766

NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redirect, and because of factors related to strpos and directory traversal, as exploited in the wild in May 2025. This is related to components/logs.php...

8.6CVSS0.68616EPSS
Exploits1References2
OSV
OSV
added 2025/05/13 12:0 a.m.5 views

CVE-2024-48766

NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redirect, and because of factors related to strpos and directory traversal, as exploited in the wild in May 2025. This is related to components/logs.php...

8.6CVSS7.1AI score0.68616EPSS
Exploits6References4
CVE
CVE
added 2025/05/13 12:0 a.m.104 views

CVE-2024-48766

NetAlertX vulnerability CVE-2024-48766 affects versions 24.7.18–24.9.12. A directory traversal flaw allows unauthenticated file reads because an HTTP client can ignore redirects and due to path handling related to logs.php; exploitation observed in the wild (May 2025). Affected components include...

8.6CVSS9AI score0.68616EPSS
In wildExploits1References2Affected Software1
Metasploit
Metasploit
added 2025/02/25 6:53 p.m.877 views

NetAlertX File Read Vulnerability

This module exploits improper authentication in logs.php endpoint. An unathenticated attacker can request log file and read any file due path traversal vulnerability. Module Options msf use auxiliary/scanner/http/netalertxfileread msf auxiliarynetalertxfileread show actions ...actions... msf...

10CVSS8.5AI score0.6293EPSS
Exploits5
Circl
Circl
added 2025/02/17 10:25 a.m.426 views

CVE-2024-48766

creationtimestamp| type| source ---|---|--- 2025-02-17 10:25:40+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-48766.yaml 2025-02-25 09:50:00+00:00| seen|...

8.6CVSS7AI score0.68616EPSS
In wildExploits1References10
Rows per page
Query Builder