Security Advisory

CVE-2024-34314

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-07 00:00:00
Last updated 2025-03-14 00:43:44
Assigner mitre
State PUBLISHED

Description

CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the file_get_contents function in the fetch_action method of /admin/template_admin.php. This vulnerability allows attackers to read arbitrary files.