CVE-2024-28117 | grav up to 1.7.44 isDangerousFunction code injection

Inserito da Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability was found in grav up to 1.7.44 and classified as critical. This issue affects the function Utils::isDangerousFunction. The manipulation leads to code injection.

The identification of this vulnerability is CVE-2024-28117. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28117 | grav up to 1.7.44 isDangerousFunction code injection

Post correlati

CVE-2023-49135 | OpenHarmony up to 3.2.2 Multimedia Player use after free

CVE-2024-22312 | IBM Storage Defender 2.0 Resiliency Service credentials storage (XFDB-278748)

CVE-2023-32264 | OpenText Documentum D2 up to 23.2 missing origin validation in websockets (KB0799355)

CVE-2023-41819 | Motorola Face Unlock App prior 2023-09-01 improper authorization