CVE-2024-32882 | wagtail up to 6.0.2 Model Edit wagtail.contrib.settings/ModelViewSet permission

Inserito da Angelo Barbosa | Mag 1, 2024 | CVE

A vulnerability was found in wagtail up to 6.0.2. It has been rated as problematic. Affected by this issue is the function wagtail.contrib.settings/ModelViewSet of the component Model Edit Handler. The manipulation leads to permission issues.

This vulnerability is handled as CVE-2024-32882. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32882 | wagtail up to 6.0.2 Model Edit wagtail.contrib.settings/ModelViewSet permission

Post correlati

CVE-2023-6299 | Apryse iText 8.0.2 Reference Table PdfDocument.java memory leak

CVE-2024-39156 | idcCMS 1.35 keyWord_deal.php cross-site request forgery

CVE-2024-1812 | Everest Forms Plugin up to 2.0.7 on WordPress font_url server-side request forgery

CVE-2024-2932 | SourceCodester Online Chatting System 1.0 admin/update_room.php id sql injection