CVE-2024-32882 | wagtail up to 6.0.2 Model Edit wagtail.contrib.settings/ModelViewSet permission

Inserito da Angelo Barbosa | Mag 1, 2024 | CVE

A vulnerability was found in wagtail up to 6.0.2. It has been rated as problematic. Affected by this issue is the function wagtail.contrib.settings/ModelViewSet of the component Model Edit Handler. The manipulation leads to permission issues.

This vulnerability is handled as CVE-2024-32882. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32882 | wagtail up to 6.0.2 Model Edit wagtail.contrib.settings/ModelViewSet permission

Post correlati

CVE-2024-43249 | Bit Apps Bit Form Pro Plugin up to 2.6.4 on WordPress unrestricted upload

CVE-2022-46025 | Totolink N200RE v5 9.3.5u.6255_B20211224 Wi-Fi Information access control

CVE-2024-44765 | MGT-Commerce up to 2.4.2 Nginx Configuration File improper authorization

CVE-2024-27715 | Eskooly Free Online School Management Software up to 3.0 Password Change Privilege Escalation