CVE-2024-22416 | pyLoad up to 0.5.0b3.dev77 API cross-site request forgery (GHSA-pgpj-v85q-h5fm)

Inserito da Angelo Barbosa | Gen 18, 2024 | CVE

A vulnerability classified as problematic was found in pyLoad up to 0.5.0b3.dev77. Affected by this vulnerability is an unknown functionality of the component API. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-22416. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22416 | pyLoad up to 0.5.0b3.dev77 API cross-site request forgery (GHSA-pgpj-v85q-h5fm)

Post correlati

CVE-2024-2014 | Panabit Panalog 202103080942 sprog_upstatus.php id sql injection

CVE-2023-50264 | morpheus65535 bazarr up to 1.3.0 /system/backup/download/ send_file filename path traversal (GHSL-2023-192)

CVE-2024-1857 | wpswings Ultimate Gift Cards for WooCommerce Plugin up to 2.6.6 on WordPress wps_wgm_preview_email_template authorization

CVE-2020-5200 | Minerbabe up to 4.16 SSH Host Key hard-coded key