cve/CVE-2024-36527.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 3e58935392 Update CVE sources 2024-08-10 19:04

2024-08-10 19:04:30 +00:00

724 B

Raw Permalink Blame History

CVE-2024-36527

Description

puppeteer-renderer v.3.2.0 and before is vulnerable to Directory Traversal. Attackers can exploit the URL parameter using the file protocol to read sensitive information from the server.

POC

Reference

https://gist.github.com/7a6163/25fef08f75eed219c8ca21e332d6e911

Github

https://github.com/bigb0x/CVE-2024-36527
https://github.com/nomi-sec/PoC-in-GitHub

724 B Raw Permalink Blame History

CVE-2024-36527

Description

POC

Reference

Github

724 B

Raw Permalink Blame History