What the vulnerability does
01Description
Path Traversal: '.../...//' vulnerability in beeteam368 VidMov vidmov allows Path Traversal.This issue affects VidMov: from n/a through <= 2.3.8.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:N
What the vulnerability does
Path Traversal: '.../...//' vulnerability in beeteam368 VidMov vidmov allows Path Traversal.This issue affects VidMov: from n/a through <= 2.3.8.
Explanation of Vulnerability in Simple Terms
VidMov versions 2.3.8 and earlier contain an integrity vulnerability affecting multiple systems due to insufficient access controls. An authenticated user with low privileges can modify data or functionality across the application scope. The vulnerability requires network access and valid login credentials but no additional user interaction.
What an attacker can do
Modify application data or functionality affecting other users or system components.
Potential impact on your site
Authenticated users can alter content, settings, or data beyond their intended permissions, compromising data integrity.
Conditions required to exploit
Valid login credentials with low-level user privileges; network access to the application.
Key dates
External resources