CVE-2024-36675 | LyLme_spage 1.9.5 get_head server-side request forgery (Issue 92)

Inserito da Angelo Barbosa | Giu 5, 2024 | CVE

A vulnerability has been found in LyLme_spage 1.9.5 and classified as critical. Affected by this vulnerability is the function get_head. The manipulation leads to server-side request forgery.

This vulnerability is known as CVE-2024-36675. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-36675 | LyLme_spage 1.9.5 get_head server-side request forgery (Issue 92)

Post correlati

CVE-2024-32944 | ameya/ayame UTAU up to 0.4.18 Voicebank Installer path traversal

CVE-2023-50950 | IBM QRadar SIEM 7.5 Email information disclosure (XFDB-275709)

CVE-2023-42509 | JFrog Artifactory up to 7.76.x exceptional condition

CVE-2024-33914 | Exclusive Addons Elementor Plugin up to 2.6.9.1 on WordPress authorization