CVE-2024-11680 | ProjectSend up to r1719 HTTP Request options.php improper authentication

Inserito da Angelo Barbosa | Nov 26, 2024 | CVE

A vulnerability, which was classified as very critical, has been found in ProjectSend up to r1719. Affected by this issue is some unknown functionality of the file options.php of the component HTTP Request Handler. The manipulation leads to improper authentication.

This vulnerability is handled as CVE-2024-11680. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-11680 | ProjectSend up to r1719 HTTP Request options.php improper authentication

Post correlati

CVE-2024-2210 | Plus Addons for Elementor Plugin up to 5.4.1 on WordPress Team Member Listing file inclusion

CVE-2024-6296 | Stackable Plugin up to 3.13.1 on WordPress cross site scripting

CVE-2024-40111 | flat file CMS 2.0.0-alpha.4 Template Body cross site scripting

CVE-2024-4870 | Frontend Registration Plugin up to 5.1 on WordPress Privilege Escalation