Unrated severityNVD Advisory· Published Mar 18, 2025· Updated Mar 25, 2025
CVE-2024-57170
CVE-2024-57170
Description
SOPlanning 1.53.00 is vulnerable to a directory traversal issue in /process/upload.php. The "fichier_to_delete" parameter allows authenticated attackers to specify file paths containing directory traversal sequences (e.g., ../). This vulnerability enables attackers to delete arbitrary files outside the intended upload directory, potentially leading to denial of service or disruption of application functionality.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: = 1.53.00
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.