Lucene search

PRIOn knowledge basePRION:CVE-2024-0465

HistoryJan 12, 2024 - 7:15 p.m.

Path traversal

2024-01-1219:15:00

PRIOn knowledge base

www.prio-n.com

vulnerability

employee profile management system

path traversal

file download

exploit

disclosed

public

vdb-250570

nvd

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.9%

JSON

A vulnerability classified as problematic was found in code-projects Employee Profile Management System 1.0. This vulnerability affects unknown code of the file download.php. The manipulation of the argument download_file leads to path traversal: ‘…/filedir’. The exploit has been disclosed to the public and may be used. VDB-250570 is the identifier assigned to this vulnerability.

CPENameOperatorVersion
employee_profile_management_systemeq1.0

CPE	Name	Operator	Version
	employee_profile_management_system	eq	1.0

References

github.com/BxYQ/vul/blob/main/EMPLOYEE_PROFILE_MANAGEMENT_SYSTEM%20_FileRead.pdf

vuldb.com/?ctiid.250570

vuldb.com/?id.250570