PT-2025-7447 · Unknown · White-Jotter
Published
2025-02-21
·
Updated
2025-08-21
·
CVE-2024-57176
CVSS v3.1
7.6
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
White-Jotter project version 0.2.2
Description
The issue in the
shiroFilter function allows attackers to execute a directory traversal and access sensitive endpoints via a crafted URL.Recommendations
For White-Jotter project version 0.2.2, consider disabling the
shiroFilter function until a patch is available to prevent directory traversal attacks. Restrict access to sensitive endpoints to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
White-Jotter