cve/CVE-2024-36857.md at 93476d6c370e261fdc1b2b03a08066de45e4892d - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio bc4580b779 Update CVE sources 2024-06-07 04:52

2024-06-07 04:52:01 +00:00

607 B

Raw Blame History

CVE-2024-36857

Description

Jan v0.4.12 was discovered to contain an arbitrary file read vulnerability via the /v1/app/readFileSync interface.

POC

Reference

https://github.com/HackAllSec/CVEs/tree/main/Jan%20AFR%20vulnerability

Github

No PoCs found on GitHub currently.