.. / CVE-2022-24900

Exploit for Piano LED Visualizer 1.3 - Local File Inclusion (CVE-2022-24900)

Description:

Piano LED Visualizer 1.3 and prior are vulnerable to local file inclusion.

Nuclei Template

View the template here CVE-2022-24900.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-24900.yaml

References:

https://github.com/onlaj/Piano-LED-Visualizer/issues/350
https://github.com/onlaj/Piano-LED-Visualizer/commit/3f10602323cd8184e1c69a76b815655597bf0ee5
https://github.com/ARPSyndicate/kenzer-templates
https://nvd.nist.gov/vuln/detail/CVE-2022-24900
https://vuldb.com/?id.198714