4 matches found
CVE-2024-54909
creationtimestamp| type| source ---|---|--- 2025-02-06 22:16:44+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhk4gi5qpz2v 2025-02-07 00:25:58+00:00| seen| https://t.me/cvedetector/17435...
CVE-2024-54909
A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbitrary file download...
CVE-2024-54909
GoldPanKit eva-server v4.1.0 is affected by a vulnerability in the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbitrary file download. The root cause is a flaw in handling the path input for that endpoint, enabling access to files...
CVE-2024-54909
A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbitrary file download...