Products
AChecker
- 1.5
Source
cve@mitre.org
Tags
CVE-2024-34523 details
Published : May 7, 2024, 3:15 p.m.
Last Modified : May 7, 2024, 8:07 p.m.
Last Modified : May 7, 2024, 8:07 p.m.
Description
AChecker 1.5 allows remote attackers to read the contents of arbitrary files via the download.php path parameter by using Unauthenticated Path Traversal. This occurs through readfile in PHP. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://github.com/inclusive-design/AChecker/blob/main/checker/download.php | cve@mitre.org |
https://github.com/piuppi/Proof-of-Concepts/blob/main/AChecker/CVE-2024-34523.md | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.