CVE-2023-44381 | October CMS prior 3.4.15 Template injection

Inserito da Angelo Barbosa | Nov 30, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in October CMS. This issue affects some unknown processing of the component Template Handler. The manipulation leads to injection.

The identification of this vulnerability is CVE-2023-44381. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-44381 | October CMS prior 3.4.15 Template injection

Post correlati

CVE-2024-27188 | Cloudways Breeze Plugin up to 2.1.3 on WordPress cross site scripting

CVE-2024-43214 | myCred Plugin up to 2.7.2 on WordPress information disclosure

CVE-2024-38631 | Linux Kernel up to 6.9.3 PAC1934 array index (8dbcb3a8cfdf/51fafb3cd7fc)

CVE-2024-42361 | Apache HertzBeat up to 1.6.0 {metricFull} sql injection (GHSL-2023-254)