CVE-2024-39210

HIGH

Mayurik Best House Rental Management System - Information Disclosure

Title source: rule

Description

Best House Rental Management System v1.0 was discovered to contain an arbitrary file read vulnerability via the Page parameter at index.php. This vulnerability allows attackers to read arbitrary PHP files and access other sensitive information within the application.

Exploits (1)

nomisec WRITEUP 1 stars

by KRookieSec · poc

https://github.com/KRookieSec/CVE-2024-39210

View Code ZIP pw:eip

References (1)

[Third Party Advisory] https://github.com/KRookieSec/CVE-2024-39210

Scores

CVSS v3 7.5

EPSS 0.0767

EPSS Percentile 91.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-200

Status published

Products (1)

mayurik/best_house_rental_management_system < 1.0

Published Jul 05, 2024

Tracked Since Feb 18, 2026