CVE-2024-49381 | plentico plenti up to 0.7.1 /postLocal injection (GHSL-2024-297)

Inserito da Angelo Barbosa | Ott 25, 2024 | CVE

A vulnerability was found in plentico plenti up to 0.7.1. It has been declared as critical. This vulnerability affects unknown code of the file /postLocal. The manipulation leads to injection.

This vulnerability was named CVE-2024-49381. The attack can be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49381 | plentico plenti up to 0.7.1 /postLocal injection (GHSL-2024-297)

Post correlati

CVE-2024-28813 | Infinera hiT 7300 5.60.50 CT Management Application Privilege Escalation

CVE-2024-24097 | code-projects Scholars Tracking System 1.0 News Feed cross site scripting

CVE-2024-27987 | GiveWP Give Plugin up to 3.3.1 on WordPress cross site scripting

CVE-2024-10130 | Tenda AC8 16.03.34.06 SetSysAutoRebbotCfg formSetRebootTimer rebootTime stack-based overflow