CVE-2024-12014 – eSigna eSignaViewer Path Traversal and Insecure Direct Object Reference

12月 20, 2024
2:16 pm

CVE ID : CVE-2024-12014

Published : Dec. 20, 2024, 1:15 p.m. | 1 hour, 1 minute ago

Description : Path Traversal and Insecure Direct Object Reference (IDOR) vulnerabilities in the eSignaViewer component in eSigna product versions 1.0 to 1.5 on all platforms allow an unauthenticated attacker to access arbitrary files in the document system via manipulation of file paths and object identifiers.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-12014 – eSigna eSignaViewer Path Traversal and Insecure Direct Object Reference

Elvescore.io

Recent Posts

CVE-2024-12884 – Codezips E-Commerce Website SQL Injection

CVE-2024-51463 – IBM i SSRF

CVE-2024-51464 – IBM Navigator for i Access Bypass Vulnerability

CVE-2024-12883 – Code-projects Job Recruitment Cross Site Scripting

CVE-2024-12875 – Easy Digital Downloads WordPress Directory Traversal Vulnerability

CVE-2024-10453 – Elementor Website Builder Stored Cross-Site Scripting Vulnerability

CVE-2024-12014 – eSigna eSignaViewer Path Traversal and Insecure Direct Object Reference

CVE-2024-12014 – eSigna eSignaViewer Path Traversal and Insecure Direct Object Reference