CVE-2024-46376 — Path Traversal in Best House Rental Management System

CWE-22 — Path Traversal3 documents3 sources

Severity

9.8CRITICALNVD

EPSS

1.0%

top 23.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mayurik Best House Rental Management System

Timeline

PublishedSep 18

Description

Best House Rental Management System 1.0 contains an arbitrary file upload vulnerability in the update_account() function of the file rental/admin_class.php.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDmayurik/best_house_rental_management_system1.0

🔴Vulnerability Details

GHSA

GHSA-v53g-5fv8-fwj6: Best House Rental Management System 1↗2024-09-18

▶

CVEList

CVE-2024-46376: Best House Rental Management System 1↗2024-09-18

▶