CVE-2024-32882 | wagtail up to 6.0.2 Model Edit wagtail.contrib.settings/ModelViewSet permission

Inserito da Angelo Barbosa | Mag 1, 2024 | CVE

A vulnerability was found in wagtail up to 6.0.2. It has been rated as problematic. Affected by this issue is the function wagtail.contrib.settings/ModelViewSet of the component Model Edit Handler. The manipulation leads to permission issues.

This vulnerability is handled as CVE-2024-32882. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32882 | wagtail up to 6.0.2 Model Edit wagtail.contrib.settings/ModelViewSet permission

Post correlati

CVE-2023-51966 | Tenda AX1803 1.0.0.1 setIptvInfo stack-based overflow

CVE-2024-8669 | Backuply Plugin up to 1.3.4 on WordPress sql injection

CVE-2023-43998 | Books-futaba mini-app on Line 13.6.1 Channel Access Token information disclosure

CVE-2022-48631 | Linux Kernel up to 5.4.214/5.10.145/5.15.70/5.19.11/6.0 fs/ext4/extents.c ext4_ext_binsearch_idx Privilege Escalation