CVE-2024-39171
July 9, 2024, 6:18 p.m.
Tags
Product(s) Impacted
PHPVibe
- 11.0.46
Description
Directory Travel in PHPVibe v11.0.46 due to incomplete blacklist checksums and directory checks, which can lead to code execution via writing specific statements to .htaccess and code to a file with a .png suffix.
Weaknesses
Date
Published: July 9, 2024, 5:15 p.m.
Last Modified: July 9, 2024, 6:18 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
cve@mitre.org