CVE-2024-9710 | PostHog database_schema server-side request forgery (ZDI-24-1383)

Inserito da Angelo Barbosa | Ott 16, 2024 | CVE

A vulnerability classified as critical has been found in PostHog. This affects the function database_schema. The manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2024-9710. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-9710 | PostHog database_schema server-side request forgery (ZDI-24-1383)

Post correlati

CVE-2014-125107 | Corveda PHPSandbox 1.3.4 String protection mechanism

CVE-2024-32963 | Navidrome up to 0.51.x HTTP Traffic Privilege Escalation

CVE-2024-36737 | Oneflow 0.9.1 oneflow.full denial of service

CVE-2024-46394 | FrogCMS 0.9.5 /admin/ cross-site request forgery