PT-2024-20241 · Unknown · Novel-Plus

Published

2024-02-07

Updated

2024-08-19

CVE-2024-24024

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Novel-Plus versions 4.3.0-RC1 and prior

Description An arbitrary file download issue exists, allowing an attacker to download files by passing specially crafted filePath and fileName parameters to the fileDownload() function in the FileController.

Recommendations For Novel-Plus versions 4.3.0-RC1 and prior, as a temporary workaround, consider disabling the fileDownload() function in the FileController until a patch is available. Restrict access to the FileController to minimize the risk of exploitation. Avoid using the filePath and fileName parameters in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2024-24024

Affected Products

Novel-Plus

PT-2024-20241 · Unknown · Novel-Plus

CVE-2024-24024

Weakness Enumeration

Related Identifiers

Affected Products

References · 6