CVE-2024-6281 | parisneo lollms up to 9.5.0 apply_settings discussion_db_name expected behavior violation

Inserito da Angelo Barbosa | Lug 20, 2024 | CVE

A vulnerability was found in parisneo lollms up to 9.5.0. It has been classified as problematic. This affects the function apply_settings. The manipulation of the argument discussion_db_name leads to expected behavior violation.

This vulnerability is uniquely identified as CVE-2024-6281. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6281 | parisneo lollms up to 9.5.0 apply_settings discussion_db_name expected behavior violation

Post correlati

CVE-2024-30728 | ROS Kinetic Kame 2 default credentials

CVE-2024-1985 | Simple Membership Plugin up to 4.4.2 on WordPress cross site scripting

CVE-2024-40544 | Sanluan PublicCMS 4.0.202302.e edit server-side request forgery

CVE-2024-8728 | Easy Load More Plugin up to 1.0.3 on WordPress cross site scripting