CVE-2024-7899 | InnoCMS 0.3.1 Backend /panel/pages/1/edit code injection

Inserito da Angelo Barbosa | Ago 16, 2024 | CVE

A vulnerability, which was classified as critical, has been found in InnoCMS 0.3.1. This issue affects some unknown processing of the file /panel/pages/1/edit of the component Backend. The manipulation leads to code injection.

The identification of this vulnerability is CVE-2024-7899. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-7899 | InnoCMS 0.3.1 Backend /panel/pages/1/edit code injection

Post correlati

CVE-2024-5870 | Tweaker5 Plugin up to 1.2 on WordPress Shortcode cross site scripting

CVE-2024-41008 | Linux Kernel AMD GPU reference count (b8f67b9ddf4f)

CVE-2024-5953 | 389-ds-base Hash userPassword denial of service

CVE-2024-25446 | Hugin 2022.0.0 Image setDestImage heap-based overflow