Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2024-34829

Github Repositories

https://github.com/ntrampham/Eramba

CVE-2024-34829: IDOR in Eramba Community version <3220 Issue Summary An IDOR bug was found on /attachments/attachments/download/ API allows abitrary file download, as a result of lacking of user permission control Issue Impact All existing files in a section, including private files belonging to the admin user, can be downloaded Any user who has the Download Attachme

References

https://github.com/ntrampham/Eramba
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073CVE-2024-5496CVE-2024-5495XPath injectionbypassCVE-2024-30043CVE-2024-24919denial of serviceCVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook