CVE-2024-21622 | Craft CMS up to 3.9.5/4.4.15 privileges management (GHSA-j5g9-j7r4-6qvx)

Inserito da Angelo Barbosa | Gen 3, 2024 | CVE

A vulnerability was found in Craft CMS up to 3.9.5/4.4.15 and classified as critical. This issue affects some unknown processing. The manipulation leads to improper privilege management.

The identification of this vulnerability is CVE-2024-21622. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21622 | Craft CMS up to 3.9.5/4.4.15 privileges management (GHSA-j5g9-j7r4-6qvx)

Post correlati

CVE-2024-37542 | WpDevArt Responsive Image Gallery, Gallery Album Plugin up to 2.0.3 on WordPress authorization

CVE-2024-3308 | HT Mega Plugin up to 2.4.9 on WordPress Image Grid Widget cross site scripting

CVE-2015-10130 | nik00726 Team Circle Image Slider with Lightbox Plugin 1.0 on WordPress cross-site request forgery

CVE-2024-26143 | Ruby on Rails up to 7.0.8.0/7.1.3.0 cross site scripting (GHSA-9822-6m93-xqf4)