CVE-2024-36622 | RaspAP raspap-webgui up to 3.0.9 clearlog.php logfile command injection

Inserito da Angelo Barbosa | Nov 29, 2024 | CVE

A vulnerability was found in RaspAP raspap-webgui up to 3.0.9. It has been rated as critical. This issue affects some unknown processing of the file clearlog.php. The manipulation of the argument logfile leads to command injection.

The identification of this vulnerability is CVE-2024-36622. The attack needs to be approached within the local network. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-36622 | RaspAP raspap-webgui up to 3.0.9 clearlog.php logfile command injection

Post correlati

CVE-2024-7913 | itsourcecode Billing System 1.0 /addclient1.php lname/fname/mi/address/contact/meterReader sql injection

CVE-2020-11917 | Svakom Siime Eye 14.1.00000001.3.330.0.0.3.14 SSID information disclosure

CVE-2024-12574 | SVG Shortcode Plugin up to 1.0.1 on WordPress SVG Upload cross site scripting

CVE-2023-52146 | Aaron J 404 Solution Plugin up to 2.33.0 on WordPress information disclosure