CVE-2024-53450 | infiniflow RAGFlow 0.13.0 document-hooks.ts access control

Inserito da Angelo Barbosa | Dic 9, 2024 | CVE

A vulnerability classified as critical has been found in infiniflow RAGFlow 0.13.0. Affected is an unknown function of the file document-hooks.ts. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2024-53450. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-53450 | infiniflow RAGFlow 0.13.0 document-hooks.ts access control

Post correlati

CVE-2024-40895 | FFRI AMC up to 3.5.3 cross site scripting

CVE-2024-25710 | Apache Commons Compress up to 1.25.0 infinite loop

CVE-2024-54277 | Alireza aliniya Nias Course Plugin up to 1.2.1 on WordPress cross site scripting

CVE-2024-2753 | Concrete CMS up to 8.5.15/9.2.7 Calendar Color Settings Screen cross site scripting