CVE-2024-0739 | Hecheng Leadshop up to 1.4.20 /web/leadshop.php install deserialization

Inserito da Angelo Barbosa | Gen 19, 2024 | CVE

A vulnerability, which was classified as critical, was found in Hecheng Leadshop up to 1.4.20. Affected is an unknown function of the file /web/leadshop.php. The manipulation of the argument install leads to deserialization.

This vulnerability is traded as CVE-2024-0739. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-0739 | Hecheng Leadshop up to 1.4.20 /web/leadshop.php install deserialization

Post correlati

CVE-2024-31142 | Xen BTC SRSO Mitigation Privilege Escalation (XSA-455)

CVE-2024-23059 | Totolink A3300R 17.0.0cu.557_B20221024 setDdnsCfg username command injection

CVE-2023-52147 | All In One WP Security & Firewall Plugin up to 5.2.4 on WordPress information disclosure

CVE-2024-38951 | PX4-Autopilot 1.12.3 MavLink Message denial of service