CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-7458

A vulnerability was found in elunez eladmin up to 2.7 and classified as critical. This issue affects some unknown processing of the file /api/deploy/upload /api/database/upload of the component Database Management/Deployment Management. The manipulation of the argument file leads to path traversal: 'dir/../../filename'. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-273551.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.2%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 5.2

References

https://github.com/elunez/eladmin/issues/851
https://vuldb.com/?ctiid.273551
https://vuldb.com/?id.273551
https://vuldb.com/?submit.380498

Products affected by CVE-2024-7458

Eladmin » Eladmin » Version: N/A

cpe:2.3:a:eladmin:eladmin:-
Eladmin » Eladmin » Version: 2.7

cpe:2.3:a:eladmin:eladmin:2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-7458

Products

Pricing

Contact Us