CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-34193

smanga 3.2.7 does not filter the file parameter at the PHP/get file flow.php interface, resulting in a path traversal vulnerability that can cause arbitrary file reading.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.3%

CVSS Severity

CVSS v3 Score 7.5

References

https://github.com/vulreport3r/cve-reports/blob/main/Smanga_has_an_arbitrary_file_read_vulnerability/report.md
https://github.com/vulreport3r/cve-reports/blob/main/Smanga_has_an_arbitrary_file_read_vulnerability/report.md

Products affected by CVE-2024-34193

Lkw199711 » Smanga » Version: 3.2.7

cpe:2.3:a:lkw199711:smanga:3.2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-34193

Products

Pricing

Contact Us