VYPR
Unrated severityNVD Advisory· Published May 14, 2024· Updated Feb 13, 2025

CVE-2024-34191

CVE-2024-34191

Description

htmly v2.9.6 was discovered to contain an arbitrary file deletion vulnerability via the delete_post() function at admin.php. This vulnerability allows attackers to delete arbitrary files via a crafted request.

Affected products

2
  • Danpros/Htmlycpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = 2.9.6

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.