CVE-2024-38645 | QNAP Notes Station up to 3.9.6 server-side request forgery (qsa-24-36)

Inserito da Angelo Barbosa | Nov 22, 2024 | CVE

A vulnerability classified as critical was found in QNAP Notes Station up to 3.9.6. This vulnerability affects unknown code. The manipulation leads to server-side request forgery.

This vulnerability was named CVE-2024-38645. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38645 | QNAP Notes Station up to 3.9.6 server-side request forgery (qsa-24-36)

Post correlati

CVE-2024-3161 | Jeg Elementor Kit Plugin up to 2.6.4 on WordPress Countdown Widget cross site scripting

CVE-2024-46101 | GDidees CMS up to 3.9.1 unrestricted upload

CVE-2024-5235 | Campcodes Complete Web-Based School Management System 1.0 teacher_salary_invoice.php teacher_id sql injection

CVE-2021-22281 | B&R Industrial Automation Studio up to 4.x path traversal