Unrated severityNVD Advisory· Published Apr 29, 2021· Updated Aug 3, 2024
CVE-2021-30048
CVE-2021-30048
Description
Directory Traversal in the fileDownload function in com/java2nb/common/controller/FileController.java in Novel-plus (小说精品屋-plus) 3.5.1 allows attackers to read arbitrary files via the filePath parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Novel-plus/Novel-plusdescription
- Range: = 3.5.1
Patches
Vulnerability mechanics
References
2- github.com/201206030/novel-plus/issues/39mitrex_refsource_MISC
- www.exploit-db.com/exploits/49724mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.