A vulnerability was identified in Chengdu Everbrite Network Technology BeikeShop up to 1.5.5. This vulnerability affects the function exportZip of the file /admin/file_manager/export. Such manipulation of the argument path leads to path traversal. The attack can be launched remotely. The exploit is publicly available and might be used. Upgrading to version 1.6.0 is able to resolve this issue. It is suggested to upgrade the affected component.
References
| Link | Resource |
|---|---|
| https://github.com/DeepMountains/Mirage/blob/main/CVE18-1.md | Broken Link |
| https://vuldb.com/?ctiid.275763 | Permissions Required |
| https://vuldb.com/?id.275763 | Third Party Advisory |
| https://vuldb.com/?submit.393376 | Third Party Advisory |
Configurations
History
24 Nov 2025, 07:16
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | (en) A vulnerability was identified in Chengdu Everbrite Network Technology BeikeShop up to 1.5.5. This vulnerability affects the function exportZip of the file /admin/file_manager/export. Such manipulation of the argument path leads to path traversal. The attack can be launched remotely. The exploit is publicly available and might be used. Upgrading to version 1.6.0 is able to resolve this issue. It is suggested to upgrade the affected component. |
Information
Published : 2024-08-26 14:15
Updated : 2025-11-24 07:16
NVD link : CVE-2024-8165
Mitre link : CVE-2024-8165
CVE.ORG link : CVE-2024-8165
JSON object : View
Products Affected
beikeshop
- beikeshop
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')