CVE-2024-52294 | khoj up to 1.29.9 /api/subscription update_subscription email authorization

Inserito da Angelo Barbosa | Dic 30, 2024 | CVE

A vulnerability classified as problematic was found in khoj up to 1.29.9. This vulnerability affects the function update_subscription of the file /api/subscription. The manipulation of the argument email leads to authorization bypass.

This vulnerability was named CVE-2024-52294. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-52294 | khoj up to 1.29.9 /api/subscription update_subscription email authorization

Post correlati

CVE-2025-48961 | Acronis Cyber Protect 16 up to 39937 on Windows permission assignment

MyPrestaModules ordersexport Module send.php sql injection

CVE-2025-5537 | Lightbox & Modal Popup Plugin up to 2.7.34 on WordPress cross site scripting

CVE-2024-24161 | MRCMS 3.0 /admin/file/edit.do path path traversal