CVE-2024-58312

UNKNOWN 0.0

xbtitFM 4.1.18 Unauthenticated Path Traversal in nfogen.php

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

xbtitFM 4.1.18 contains a path traversal vulnerability that allows unauthenticated attackers to access sensitive system files by manipulating URL parameters. Attackers can exploit directory traversal techniques to read critical system files like using encoded path traversal characters in HTTP requests.

CWE	CWE-22
Vendor	xbtitfm
Product	xbtitfm
Published	Dec 11, 2025
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for xbtitfm xbtitfm

Be the first to know when new unknown vulnerabilities affecting xbtitfm xbtitfm are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

xbtitfm / xbtitFM

4.1.18

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/51909 xbtitfm.eu: https://xbtitfm.eu vulncheck.com: https://www.vulncheck.com/advisories/xbtitfm-unauthenticated-path-traversal-in-nfogenphp

Credits

xbtitFM Team