CVE-2024-41657 | Casdoor up to 1.577.0 cross-domain policy (GHSL-2024-035)

Posted by Angelo Barbosa | Aug 21, 2024 | CVE

A vulnerability was found in Casdoor up to 1.577.0. It has been classified as problematic. This affects an unknown part. The manipulation leads to permissive cross-domain policy with untrusted domains.

This vulnerability is uniquely identified as CVE-2024-41657. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-41657 | Casdoor up to 1.577.0 cross-domain policy (GHSL-2024-035)

Related Posts

CVE-2024-3240 | ConvertPlug Plugin up to 3.5.25 on WordPress code injection

CVE-2024-25623 | Mastodon up to 3.5.18/4.0.14/4.1.14/4.2.6 HTTP Header Content-Type unrestricted upload

CVE-2024-33753 | Section Camera up to 2.5.5.3116-S50-SMA-B20160811 Password improper authorization

CVE-2024-1531 | Hitachi Energy RTU500 up to 13.5.3 STB Language File unrestricted upload