CVE-2023-32063 | oroinc crm up to 4.2.5/5.0.3/5.1.0 ACL access control (GHSA-897w-jv7j-6r7g)

Inserito da Angelo Barbosa | Nov 28, 2023 | CVE

A vulnerability has been found in oroinc crm up to 4.2.5/5.0.3/5.1.0 and classified as critical. This vulnerability affects unknown code of the component ACL. The manipulation leads to improper access controls.

This vulnerability was named CVE-2023-32063. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-32063 | oroinc crm up to 4.2.5/5.0.3/5.1.0 ACL access control (GHSA-897w-jv7j-6r7g)

Post correlati

CVE-2024-38519 | yt-dlp 2023.09.24.003044/2023.7.06/2023.11.14 Working Directory unrestricted upload (GHSA-79w7-vh3h-8g4j)

CVE-2024-35300 | JetBrains TeamCity prior 2024.03.1 Update Page cross site scripting

CVE-2023-6806 | Starbox Plugin up to 3.4.8 on WordPress Job Setting cross site scripting

CVE-2023-37528 | HCL BigFix Platform up to 9.5.23/10.0.9 Save Report cross site scripting (KB0110209)