CVE-2024-42718 | THREATINT

Description

A path traversal vulnerability in Croogo CMS 4.0.7 allows remote attackers to read arbitrary files via a specially crafted path in the 'edit-file' parameter.

PUBLISHED Reserved 2024-08-05 | Published 2025-12-26 | Updated 2025-12-27 | Assigner mitre

References

github.com/croogo/croogo

github.com/jacopo1223/jacopo.github/tree/main/CVE-2024-42718

cve.org (CVE-2024-42718)

nvd.nist.gov (CVE-2024-42718)

Download JSON