CVE-2024-28216 | NAVER nGrinder up to 3.5.8 Webhook Request access control

Inserito da Angelo Barbosa | Mar 7, 2024 | CVE

A vulnerability has been found in NAVER nGrinder up to 3.5.8 and classified as critical. This vulnerability affects unknown code of the component Webhook Request Handler. The manipulation leads to improper access controls.

This vulnerability was named CVE-2024-28216. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28216 | NAVER nGrinder up to 3.5.8 Webhook Request access control

Post correlati

CVE-2024-28984 | Hitachi Vantara Pentaho Business Analytics Server prior 9.3.0.7/10.1.0.0 Analyzer Plugin Interface cross site scripting

CVE-2024-5835 | Google Chrome prior 126.0.6478.54 Tab Groups heap-based overflow (ID 341991)

CVE-2023-43745 | Intel CBI Software prior 1.1.0 denial of service (intel-sa-01013)

CVE-2023-51415 | GiveWP Donation Plugin and Fundraising Platform Plugin up to 3.2.2 on WordPress cross site scripting