CVE-2024-34082 | grav up to 1.7.45 *.yaml privileges management

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability was found in grav up to 1.7.45. It has been classified as critical. This affects an unknown part of the file /grav/user/accounts/*.yaml. The manipulation leads to improper privilege management.

This vulnerability is uniquely identified as CVE-2024-34082. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34082 | grav up to 1.7.45 *.yaml privileges management

Related Posts

CVE-2024-36819 | MAP-OS up to 4.45.0 Client Name cross site scripting

CVE-2024-4891 | Essential Blocks Plugin up to 4.5.12 on WordPress cross site scripting

CVE-2024-38951 | PX4-Autopilot 1.12.3 MavLink Message denial of service

CVE-2023-6742 | Envira Gallery Lite Plugin up to 1.8.7.2 on WordPress envira_gallery_insert_images authorization