CVE-2024-43415 | decidim-ice decidim-module-decidim_awesome up to 0.10.2/0.11.1 sql injection (GHSA-cxwf-qc32-375f)

Inserito da Angelo Barbosa | Nov 12, 2024 | CVE

A vulnerability was found in decidim-ice decidim-module-decidim_awesome up to 0.10.2/0.11.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection.

This vulnerability is known as CVE-2024-43415. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-43415 | decidim-ice decidim-module-decidim_awesome up to 0.10.2/0.11.1 sql injection (GHSA-cxwf-qc32-375f)

Post correlati

CVE-2024-38748 | TheInnovs EleForms Plugin up to 2.9.9.9 on WordPress authorization

CVE-2024-21532 | ggit Child Process API exec os command injection (SNYK-JS-GGIT-5731320)

CVE-2023-52635 | Linux Kernel up to 5.10.209/5.15.148/6.1.76/6.6.15/6.7.3 Virtual Address cancel_delayed_work_sync buffer overflow

CVE-2024-34203 | Totolink CP450 4.1.0cu.747_B20191224 setLanguageCfg stack-based overflow