CVE-2024-46609 | Thecosy IceCMS up to 3.4.7 UserController.java CheckVip access control

Inserito da Angelo Barbosa | Set 24, 2024 | CVE

A vulnerability was found in Thecosy IceCMS up to 3.4.7. It has been declared as critical. This vulnerability affects the function CheckVip of the file UserController.java. The manipulation leads to improper access controls.

This vulnerability was named CVE-2024-46609. The attack needs to be initiated within the local network. There is no exploit available.

CVE-2024-46609 | Thecosy IceCMS up to 3.4.7 UserController.java CheckVip access control

Post correlati

CVE-2024-30398 | Juniper Junos OS up to 23.2R1-S2 Packet Forwarding Engine memory corruption (JSA79176)

Login required

CVE-2024-1061 | HTML5 Video Player Plugin up to 2.5.24 on WordPress get_view id sql injection

CVE-2023-7014 | Author Box, Guest Author and Co-Authors for Your Posts Plugin ma_debug information disclosure