Lucene search
K

7 matches found

Exploit DB
Exploit DB
added 2025/04/11 12:0 a.m.366 views

WebFileSys 2.31.0 - Directory Path Traversal

Exploit Title: WebFileSys 2.31.0 - Directory Path Traversal in relPath Parameter Date: Nov 25, 2024 Exploit Author: Korn Chaisuwan, Charanin Thongudom, Pongtorn Angsuchotmetee Vendor Homepage: http://www.webfilesys.de/webfilesys-home/index.html Software Link:...

5.3CVSS7AI score0.01805EPSS
Exploits3
0day.today
0day.today
added 2025/02/09 12:0 a.m.152 views

WebFileSys 2.31.0 Directory Traversal Vulnerability

An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing...

5.3CVSS6.7AI score0.01805EPSS
Exploits3
NVD
NVD
added 2025/02/06 10:15 p.m.14 views

CVE-2024-53586

An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing...

5.3CVSS0.01805EPSS
Exploits3References1
Circl
Circl
added 2025/02/06 9:41 p.m.5 views

CVE-2024-53586

creationtimestamp| type| source ---|---|--- 2025-02-06 21:41:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113959115028131851 2025-02-06 22:16:42+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhk4gfr6ib24 2025-02-06 22:49:12+00:00| seen|...

5.3CVSS6AI score0.01805EPSS
Exploits3References5
Cvelist
Cvelist
added 2025/02/06 12:0 a.m.11 views

CVE-2024-53586

An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing...

0.01805EPSS
Exploits3References1
CVE
CVE
added 2025/02/06 12:0 a.m.72 views

CVE-2024-53586

CVE-2024-53586 : WebFileSys 2.31.0 is affected by a directory-traversal in the relPath parameter. A crafted HTTP request (e.g., using ../../.. payloads) can manipulate file paths and gain unauthorized access to sensitive files outside the intended directory. Exploit details are demonstrated in Ex...

5.3CVSS7.1AI score0.01805EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2025/02/06 12:0 a.m.319 views

WebFileSys 2.31.0 Directory Traversal

An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing...

7.3AI score0.01805EPSS
Exploits3
Rows per page
Query Builder