CVE-2024-49521 | Adobe Commerce up to 3.2.5 Requests server-side request forgery (apsb24-90)

Inserito da Angelo Barbosa | Nov 12, 2024 | CVE

A vulnerability has been found in Adobe Commerce up to 3.2.5 and classified as critical. This vulnerability affects unknown code of the component Requests Handler. The manipulation leads to server-side request forgery.

This vulnerability was named CVE-2024-49521. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49521 | Adobe Commerce up to 3.2.5 Requests server-side request forgery (apsb24-90)

Post correlati

CVE-2024-5720 | Logsign Unified SecOps Platform command injection

CVE-2024-5474 | Lenovo Dolby Vision Provisioning software prior 2.0.0.2 default permission

CVE-2023-49250 | Apache DolphinScheduler up to 3.2.0 HTTPS Connection HttpUtils certificate validation

CVE-2024-35661 | SoftLab Upload Fields for WPForms Plugin up to 1.0.2 on WordPress authorization