CVE-2024-39303 | WeblateOrg weblate up to 5.6.1 ZIP File file inclusion (GHSA-jfgp-674x-6q4p)

Inserito da Angelo Barbosa | Lug 1, 2024 | CVE

A vulnerability was found in WeblateOrg weblate up to 5.6.1. It has been classified as problematic. This affects an unknown part of the component ZIP File Handler. The manipulation leads to file inclusion.

This vulnerability is uniquely identified as CVE-2024-39303. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39303 | WeblateOrg weblate up to 5.6.1 ZIP File file inclusion (GHSA-jfgp-674x-6q4p)

Post correlati

CVE-2024-31934 | Link Whisper Free Plugin up to 0.6.9 on WordPress cross-site request forgery

CVE-2024-34199 | TinyWeb up to 1.94 Request Line denial of service

CVE-2024-22523 | Qiyu iFair up to 23.8_ad0 uploadimage path traversal

CVE-2024-24320 | MGT-COMMERCE CloudPanel up to 2.4.0 load-logfiles service path traversal