A path traversal vulnerability in the /path/to/uploads/ directory of Blesta before v5.9.2 allows attackers to takeover user accounts and execute arbitrary code.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.blesta.com/2024/02/08/security-advisory/ |
History
Wed, 28 Aug 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-22 | |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-02-28T00:00:00
Updated: 2024-08-28T15:33:13.980Z
Reserved: 2024-02-12T00:00:00
Link: CVE-2024-25859
Vulnrichment
Updated: 2024-08-01T23:52:06.101Z
NVD
Status : Awaiting Analysis
Published: 2024-02-28T20:15:41.900
Modified: 2024-08-28T16:35:16.347
Link: CVE-2024-25859
Redhat
No data.