CVE-2024-11215 – EasyPHP Web Server Path Traversal

CVE ID : CVE-2024-11215

Published : Nov. 14, 2024, 2:15 p.m. | 1 hour, 1 minute ago

Description : Absolute path traversal (incorrect restriction of a path to a restricted directory) vulnerability in the EasyPHP web server, affecting version 14.1. This vulnerability could allow remote users to bypass SecurityManager restrictions and retrieve any file stored on the server by setting only consecutive strings ‘/…%5c’.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-11215 – EasyPHP Web Server Path Traversal