Categoria: CVE

CVE-2024-52872 | Flagsmith up to 2.134.0 get_document permission

A vulnerability classified as critical has been found in Flagsmith up to 2.134.0. This affects the function get_document. The manipulation leads to permission issues. This vulnerability is uniquely identified as CVE-2024-52872. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-52871 | Flagsmith up to 2.134.0 Setting access control

A vulnerability was found in Flagsmith up to 2.134.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2024-52871. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-52876 | Drone Go2 Mobile Application up to 1.1.7 Holy Stone Remote ID Module HSRID01 denial of service

A vulnerability was found in Drone Go2 Mobile Application up to 1.1.7. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Holy Stone Remote ID Module HSRID01. The manipulation leads to denial of service. This vulnerability is known as CVE-2024-52876. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected...

Per saperne di più

CVE-2024-52415 | Skpstorm SK WP Settings Backup Plugin up to 1.0 on WordPress cross-site request forgery

A vulnerability, which was classified as problematic, was found in Skpstorm SK WP Settings Backup Plugin up to 1.0 on WordPress. This affects an unknown part. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2024-52415. It is possible to initiate the attack remotely. There is no exploit...

Per saperne di più
Caricamento