CVE-2024-48766

HIGH Year: 2024
CVSS v3 Score
8.6
High
Weakness Type
CWE-698
View all →

Vulnerability Description

NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redirect, and because of factors related to strpos and directory traversal, as exploited in the wild in May 2025. This is related to components/logs.php.

Related Vulnerabilities

CVE-2024-2569

CRITICAL
CVSS:9.8(Critical)

A vulnerability was found in SourceCodester Employee Task Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin-manage-user.php. The...

CWE-6982024

CVE-2024-2570

CRITICAL
CVSS:9.8(Critical)

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been classified as critical. This affects an unknown part of the file /edit-task.php. The manipulation leads to ...

CWE-6982024

CVE-2024-2571

CRITICAL
CVSS:9.8(Critical)

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manage-admin.php. The manipulati...

CWE-6982024

CVE-2024-2572

CRITICAL
CVSS:9.8(Critical)

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /task-details.php. The manipulati...

CWE-6982024

CVE-2024-2573

CRITICAL
CVSS:9.8(Critical)

A vulnerability classified as critical has been found in SourceCodester Employee Task Management System 1.0. Affected is an unknown function of the file /task-info.php. The manipulation leads to execu...

CWE-6982024

CVE-2024-3376

CRITICAL
CVSS:9.8(Critical)

A vulnerability classified as critical has been found in SourceCodester Computer Laboratory Management System 1.0. This affects an unknown part of the file config.php. The manipulation of the argument...

CWE-6982024