CVE-2024-31218 | Webhood up to 0.9.0 Backend Container /api/admins missing authentication (GHSA-h533-rxhm-73j2)

Posted by Angelo Barbosa | Apr 5, 2024 | CVE

A vulnerability was found in Webhood up to 0.9.0. It has been classified as critical. This affects an unknown part of the file /api/admins of the component Backend Container. The manipulation leads to missing authentication.

This vulnerability is uniquely identified as CVE-2024-31218. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31218 | Webhood up to 0.9.0 Backend Container /api/admins missing authentication (GHSA-h533-rxhm-73j2)

Related Posts

CVE-2023-50865 | Kashipara Group Travel Website 1.0 hotelSearch.php city sql injection

CVE-2024-0535 | Tenda PA6 1.0.1.21 httpd /portmap cgiPortMapAdd groupName stack-based overflow

CVE-2023-6259 | Brivo ACS100/ACS300 prior 6.2.4.3 access control

CVE-2024-7702 | bitpressadmin Contact Form Plugin up to 2.13.9 on WordPress versions entryID sql injection