CVE-2024-25154

Published: 2024-03-13T15:15Z

Last Modified: 2025-01-21T19:01Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Improper URL validation leads to path traversal in FileCatalyst Direct 3.8.8 and earlier allowing an encoded payload to cause the web server to return files located outside of the web root which may lead to data leakage. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt