Podatność CVE-2024-6738
Publikacja: 2024-07-15

Opis:
The tumbnail API of Tronclass from WisdomGarden lacks proper access control, allowing unauthenticated remote attackers to obtain certain specific files by modifying the URL.

Typ:

CWE-284

 (Improper Access Control)

 Referencje:
https://www.twcert.org.tw/tw/cp-132-7925-97e1c-1.html
https://www.twcert.org.tw/en/cp-139-7926-f7914-2.html
Copyright 2024, cxsecurity.com

 

Back to Top