Security Advisory

CVE-2024-25006

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-02 00:00:00

Last updated 2025-05-07 20:09:55

Assigner mitre

State PUBLISHED

Description

XenForo before 2.2.14 allows Directory Traversal (with write access) by an authenticated user who has permissions to administer styles, and uses a ZIP archive for Styles Import.

← Browse all CVEs View on cve.org ↗