CVE-2024-6303 | Conduit up to 0.7.x Client-Server API authorization

Posted by Angelo Barbosa | Jun 25, 2024 | CVE

A vulnerability was found in Conduit up to 0.7.x. It has been rated as very critical. Affected by this issue is some unknown functionality of the component Client-Server API. The manipulation leads to missing authorization.

This vulnerability is handled as CVE-2024-6303. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6303 | Conduit up to 0.7.x Client-Server API authorization

Related Posts

CVE-2024-31371 | Xylus Themes WP Event Aggregator Plugin up to 1.7.6 on WordPress cross-site request forgery

CVE-2024-1024 | SourceCodester Facebook News Feed Like 1.0 New Account First Name/Last Name cross site scripting

CVE-2024-42335 | 7Twenty Bot cross site scripting

CVE-2023-52203 | Oliver Seidel & Bastian Germann cformsII Plugin up to 15.0.5 on WordPress cross site scripting