CVE-2023-46241 | discourse-microsoft-auth microsoft_auth:revoke authorization (GHSA-2w32-w539-3m7r)

Inserito da Angelo Barbosa | Feb 21, 2024 | CVE

A vulnerability was found in discourse-microsoft-auth. It has been declared as critical. Affected by this vulnerability is the function microsoft_auth:revoke. The manipulation leads to incorrect authorization.

This vulnerability is known as CVE-2023-46241. The attack can be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2023-46241 | discourse-microsoft-auth microsoft_auth:revoke authorization (GHSA-2w32-w539-3m7r)

Post correlati

CVE-2024-4519 | Campcodes Complete Web-Based School Management 1.0 teacher_salary_details3.php month cross site scripting

CVE-2024-3794 | White Bear Solutions WBSAirback 21.02.04 URL description cross site scripting

CVE-2023-6854 | Breakdance Plugin up to 1.7.0 on WordPress postmeta cross site scripting

CVE-2023-5500 | Frauscher FDS102 2.10.0/2.10.1 code injection (VDE-2023-049)