CVE-2024-54454 | Kurmi Provisioning Suite up to 7.9.0.34/7.10.0.18/7.11.0.15 unlogged.do sendPasswordReinitLink information exposure

Inserito da Angelo Barbosa | Dic 27, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Kurmi Provisioning Suite up to 7.9.0.34/7.10.0.18/7.11.0.15. This issue affects the function sendPasswordReinitLink of the file unlogged.do. The manipulation leads to information exposure through discrepancy.

The identification of this vulnerability is CVE-2024-54454. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-54454 | Kurmi Provisioning Suite up to 7.9.0.34/7.10.0.18/7.11.0.15 unlogged.do sendPasswordReinitLink information exposure

Post correlati

CVE-2022-4966 | sequentech admin-console up to 6.1.7 Election Description cross site scripting (292/293)

CVE-2023-49926 | MISP up to 2.4.178 Event Timeline Widget EventTimelineTool.php cross site scripting

CVE-2024-8336 | SourceCodester Music Gallery Site 1.0 Master.php id sql injection

CVE-2024-50255 | Linux Kernel up to 6.1.115/6.6.59/6.11.6 __hci_cmd_sync_sk null pointer dereference