CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-11838

External Control of File Name or Path vulnerability in PlexTrac allows Local Code Inclusion through use of an undocumented API endpoint.This issue affects PlexTrac: from 1.61.3 before 2.8.1.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.8%

CVSS Severity

CVSS v3 Score 9.8

References

https://docs.plextrac.com/plextrac-documentation/master/security-advisories#release-2.11.0

Products affected by CVE-2024-11838

Plextrac » Plextrac » Version: Any

cpe:2.3:a:plextrac:plextrac:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-11838

Products

Pricing

Contact Us