CVE-2024-47047 | powermail Extension up to 7.5.0/8.5.0/10.9.0/12.4.0 on TYPO3 createAction resource injection

Inserito da Angelo Barbosa | Set 17, 2024 | CVE

A vulnerability has been found in powermail Extension up to 7.5.0/8.5.0/10.9.0/12.4.0 on TYPO3 and classified as problematic. Affected by this vulnerability is the function createAction. The manipulation of the argument mail leads to improper control of resource identifiers.

This vulnerability is known as CVE-2024-47047. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47047 | powermail Extension up to 7.5.0/8.5.0/10.9.0/12.4.0 on TYPO3 createAction resource injection

Post correlati

CVE-2024-7738 | yzane vscode-markdown-pdf 1.5.0 Markdown File pathname traversal

CVE-2024-24023 | novel-plus up to 4.3.0-RC1 /novel/bookContent/list offset/limit/sort sql injection

CVE-2024-27982 | Node.js up to 18.20.0/20.12.0/21.7.2 Header Content-Length request smuggling

CVE-2024-5576 | Tutor LMS Elementor Addons Plugin up to 2.1.4 on WordPress Course Carousel Widget cross site scripting