CVE-2024-46212

An issue in the component /index.php?page=backup/export of REDAXO CMS v5.17.1 allows attackers to execute a directory traversal.
Configurations

Configuration 1 (hide)

cpe:2.3:a:redaxo:redaxo:5.17.1:*:*:*:*:*:*:*

History

13 Jun 2025, 18:36

Type Values Removed Values Added
First Time Redaxo
Redaxo redaxo
References () https://github.com/Purposex7/Vulns4Study/blob/main/REDAXO%20File%20Download%20Exploit.md - () https://github.com/Purposex7/Vulns4Study/blob/main/REDAXO%20File%20Download%20Exploit.md - Exploit, Third Party Advisory
CPE cpe:2.3:a:redaxo:redaxo:5.17.1:*:*:*:*:*:*:*

17 Oct 2024, 17:35

Type Values Removed Values Added
Summary
  • (es) Un problema en el componente /index.php?page=backup/export de REDAXO CMS v5.17.1 permite a los atacantes ejecutar un directory traversal.
CWE CWE-22
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 4.9

16 Oct 2024, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-16 21:15

Updated : 2025-06-13 18:36


NVD link : CVE-2024-46212

Mitre link : CVE-2024-46212

CVE.ORG link : CVE-2024-46212


JSON object : View

Products Affected

redaxo

  • redaxo
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')