CVE-2024-28117 | grav up to 1.7.44 isDangerousFunction code injection

Inserito da Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability was found in grav up to 1.7.44 and classified as critical. This issue affects the function Utils::isDangerousFunction. The manipulation leads to code injection.

The identification of this vulnerability is CVE-2024-28117. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28117 | grav up to 1.7.44 isDangerousFunction code injection

Post correlati

CVE-2023-48987 | CUSG Content Management System up to 7.74 pages.php sql injection

CVE-2021-47530 | Linux Kernel up to 5.15.6 wait_fence memory leak (4c3cdbf25403/ea0006d390a2)

CVE-2024-45291 | PHPOffice PhpSpreadsheet up to 1.29.1/2.1.0 XLSX File setEmbedImages absolute path traversal

CVE-2024-7877 | Appointment Booking Calendar Plugin on WordPress Notification Setting cross site scripting