CVE-2024-52447

CVSS 3.1 Score 8.6 of 10 (high)

Details

Published Nov 20, 2024

Updated: Nov 21, 2024

CWE ID 35

Summary

CVE-2024-52447 is a newly disclosed path traversal vulnerability affecting the Corporate Zen Contact Page With Google Map. The flaw, located within the application, allows an attacker to manipulate file paths leading to potential unauthorized access to sensitive data or system functions. Specifically, the vulnerability is exploited by utilizing a '.../...//' pattern in the file path input. Affected versions of Contact Page With Google Map range from n/a to 1.6.1. Organizations using this software are advised to apply patches or upgrades as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0a4Y92
https://www.cve.org/CVERecord?id=CVE-2024-52447
https://nvd.nist.gov/vuln/detail/CVE-2024-52447

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners

CVE-2024-52447

CVSS 3.1 Score 8.6 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations