CVE-2024-44373 Information
Aug 20, 2025
cve
Description
A Path Traversal vulnerability in AllSky v2023.05.01_04 allows an unauthenticated attacker to create a webshell and remote code execution via the path content parameter to /includes/save_file.php.
Reference
https://github.com/AllskyTeam/allsky https://github.com/AllskyTeam/allsky/blob/master/html/includes/save_file.php https://lean-strand-cb6.notion.site/CVE-2024-44373-21efbd400a6c80f4a5abf5d5eb9b068c
Related CNNVD
CNNVD-202508-2199 (Published: 2025-08-19)
Share on: