{
  "id": "CVE-2024-34315",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-05-07T19:15:08.447",
  "lastModified": "2024-05-07T20:07:58.737",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "CmsEasy v7.7.7.9 was discovered to contain a local file inclusion vunerability via the file_get_contents function in the fckedit_action method of /admin/template_admin.php. This vulnerability allows attackers to read arbitrary files."
    },
    {
      "lang": "es",
      "value": "Se descubri\u00f3 que CmsEasy v7.7.7.9 contiene una vulnerabilidad de inclusi\u00f3n de archivos locales a trav\u00e9s de la funci\u00f3n file_get_contents en el m\u00e9todo fckedit_action de /admin/template_admin.php. Esta vulnerabilidad permite a los atacantes leer archivos arbitrarios."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://github.com/H3rmesk1t/vulnerability-paper/blob/main/CmsEasy-7.7.7.9-File%20Inclusion2.md",
      "source": "cve@mitre.org"
    }
  ]
}