CVE-2024-53523

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions JSFinder version d70ab9bc5221e016c08cffaf0d9ac79646c90645

Description The issue concerns a Directory Traversal vulnerability in the find by file function. This allows for potential unauthorized access to files outside the intended directory.

Recommendations For JSFinder version d70ab9bc5221e016c08cffaf0d9ac79646c90645, consider disabling the find by file function until a patch is available to prevent potential exploitation. Restrict access to sensitive files and directories to minimize the risk of unauthorized access.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2024-53523

Affected Products

Jsfinder

CVE-2024-53523

Weakness Enumeration

Related Identifiers

Affected Products

References · 5