Affected Products
Vendor / product matrix with CVE counts sourced from the CPE catalog.
Products
1 vendor| Vendor | Products | CVEs | KEV | Avg EPSS | Worst Severity |
|---|---|---|---|---|---|
| 1 | 1 | 0 | 45.9% | HIGH |
Related CVEs
1| CVE ID | Description | Severity | CVSS | KEV | EPSS | Published | |
|---|---|---|---|---|---|---|---|
| CVE-2024-47049 | The czim/file-handling package before 1.5.0 and 2.x before 2.3.0 (used with PHP Composer) does not properly validate URLs within makeFromUrl and makeFromAny, leading to SSRF, and to directory traversal for the reading of local files. | HIGH | 8.2 | — | 45.9% | Sep 17, 2024 |