VYPR

eva-server

by GoldPanKit

CVEs (1)

  • CVE-2024-54909HigFeb 6, 2025
    risk 0.53cvss 8.1epss 0.00

    A vulnerability has been identified in GoldPanKit eva-server v4.1.0. It affects the path parameter of the /api/resource/local/download endpoint, where manipulation of this parameter can lead to arbitrary file download.