CVE-2024-35180 | ome omero-web up to 5.25.0 callback unknown vulnerability (GHSA-vr85-5pwx-c6gq)

Inserito da Angelo Barbosa | Mag 21, 2024 | CVE

A vulnerability has been found in ome omero-web up to 5.25.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument callback leads to inclusion of web functionality from an untrusted source.

This vulnerability is known as CVE-2024-35180. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-35180 | ome omero-web up to 5.25.0 callback unknown vulnerability (GHSA-vr85-5pwx-c6gq)

Post correlati

CVE-2024-50413 | Codection Import and Export Users and Customers Plugin up to 1.27.5 on WordPress cross site scripting

CVE-2023-42801 | moonlight-stream moonlight-common-c GameStream Client buffer overflow (GHSA-f3h8-j898-5h5v)

CVE-2024-22857 | Zlog heap-based overflow

CVE-2023-41927 | Kiloview P1/P2 up to 4.8.2605 risky encryption (NCSC-2024-0273)