CVE-2024-5354 | anji-plus AJ-Report up to 1.4.1 detailByCode shareToken information disclosure

Inserito da Angelo Barbosa | Mag 25, 2024 | CVE

A vulnerability classified as problematic was found in anji-plus AJ-Report up to 1.4.1. This vulnerability affects unknown code of the file /reportShare/detailByCode. The manipulation of the argument shareToken leads to information disclosure.

This vulnerability was named CVE-2024-5354. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-5354 | anji-plus AJ-Report up to 1.4.1 detailByCode shareToken information disclosure

Post correlati

CVE-2024-36604 | Tenda O3V2 1.0.0.12(3880) SetStp stpEn command injection

CVE-2024-29833 | 10Web PhotoGallery Plugin up to 1.8.21 on WordPress SVG File cross site scripting

CVE-2024-3774 | aEnrich a+HRD 6.8/7.0/7.1/7.2 System Configuration access control

CVE-2024-37282 | Elastic Cloud Enterprise up to 3.7.1 API Key improper authorization