Security Advisory

CVE-2024-34995

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-24 16:11:15

Last updated 2025-02-13 15:53:50

Assigner mitre

State PUBLISHED

Description

svnWebUI v1.8.3 was discovered to contain an arbitrary file deletion vulnerability via the dirTemps parameter under com.cym.controller.UserController#importOver. This vulnerability allows attackers to delete arbitrary files via a crafted POST request.

← Browse all CVEs View on cve.org ↗