Vulnerability Details CVE-2024-35081
LuckyFrameWeb v3.5.2 was discovered to contain an arbitrary file deletion vulnerability via the fileName parameter in the fileDownload method.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.1%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2024-35081
-
cpe:2.3:a:luckyframe:luckyframeweb:3.5.2