CVE-2024-41709 | Backdrop CMS up to 1.27.2/1.28.1 Field Label permission

Inserito da Angelo Barbosa | Lug 22, 2024 | CVE

A vulnerability classified as critical was found in Backdrop CMS up to 1.27.2/1.28.1. Affected by this vulnerability is an unknown functionality of the component Field Label Handler. The manipulation leads to permission issues.

This vulnerability is known as CVE-2024-41709. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41709 | Backdrop CMS up to 1.27.2/1.28.1 Field Label permission

Post correlati

CVE-2024-6044 | D-Link R15 URL path traversal

CVE-2024-39158 | idcCMS 1.35 userSys_deal.php cross-site request forgery

CVE-2024-7354 | Ninja Forms Plugin up to 3.8.10 on WordPress cross site scripting

CVE-2024-44797 | Gazelle 63b3370 enable_requests.php view cross site scripting (ID 130)