MEDIUM🇵🇱 Wersja polska

CVE-2024-55214

CVSS 6.5v3.1pub. 2025-02-07upd. 2025-09-15

Local File Inclusion vulnerability in dhtmlxFileExplorer v.8.4.6 allows a remote attacker to obtain sensitive information via the file download functionality.

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Dhtmlx File Explorer

    APP
    Dhtmlx
    8.4.6
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Path Traversal
CWE
References

Related vulnerabilities

CVE-2024-55213MEDIUM6.5ten sam produkt

Directory Traversal vulnerability in dhtmlxFileExplorer v.8.4.6 allows a remote attacker to obtain sensitive i...

CVE-2026-41552CRITICAL9.2PL ✓ten sam vendor

Path Traversal w PDF Export Module DHTMLX Gantt i Scheduler

CVE-2026-41553CRITICAL10.0PL ✓ten sam vendor

RCE i command injection w PDF Export Module DHTMLX (Gantt/Scheduler)

CVE-2013-6281MEDIUM4.3ten sam vendor

Cross-site scripting (XSS) vulnerability in codebase/spreadsheet.php in the Spreadsheet (dhtmlxSpreadsheet) pl...