CVE-2024-13136 | wangl1989 mysiteforme 1.0 ShiroConfig.java rememberMeManager deserialization

Inserito da Angelo Barbosa | Gen 4, 2025 | CVE

A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by this issue is the function rememberMeManager of the file src/main/java/com/mysiteforme/admin/config/ShiroConfig.java. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2024-13136. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-13136 | wangl1989 mysiteforme 1.0 ShiroConfig.java rememberMeManager deserialization

Post correlati

CVE-2023-50718 | NocoDB up to 0.202.9 table_name sql injection

CVE-2024-38296 | Dell Edge Gateway 5200 1.03.10/1.05.10 information disclosure (dsa-2024-345)

CVE-2024-7208 | HostGator Hosted Services authentication spoofing

CVE-2024-5681 | Schneider Electric EcoStruxure Foxboro DCS Core Control Services up to 9.8 IOCTL Call Foxboro.sys input validation (SEVD-2024-191-02)