CVE-2024-4839 | parisneo lollms-webui up to 9.6 XTTS Service cross-site request forgery

Inserito da Angelo Barbosa | Giu 24, 2024 | CVE

A vulnerability was found in parisneo lollms-webui up to 9.6. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component XTTS Service. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-4839. The attack can be launched remotely. There is no exploit available.

CVE-2024-4839 | parisneo lollms-webui up to 9.6 XTTS Service cross-site request forgery

Post correlati

CVE-2023-49086 | Cacti up to 1.2.25 Incomplete Fix CVE-2023-39360 graphs_new.php cross site scripting

CVE-2024-26559 | uverif 2.0 information disclosure

CVE-2023-48796 | Apache DolphinScheduler 3.0.0/3.0.1 information disclosure

CVE-2023-48958 | GPAC 2.3-DEV-rev617-g671976fcc-master media_tools/mpd.c gf_mpd_resolve_url memory leak