exploitDog

CVE-2024-34191

Опубликовано: 14 мая 2024

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

htmly v2.9.6 was discovered to contain an arbitrary file deletion vulnerability via the delete_post() function at admin.php. This vulnerability allows attackers to delete arbitrary files via a crafted request.

Ссылки

https://chmod744.super.site/htmly-cve
Broken Link
https://chmod744.super.site/htmly-cve
Broken Link

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:htmly:htmly:2.9.6:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00447

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-35

Связанные уязвимости

GHSA-gr39-vvc6-5g3h

CVSS3: 6.5

github

больше 1 года назад

htmly v2.9.6 was discovered to contain an arbitrary file deletion vulnerability via the delete_post() function at admin.php. This vulnerability allows attackers to delete arbitrary files via a crafted request.

EPSS

Процентиль: 63%

0.00447

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-35