CVE-2024-41657 | Casdoor up to 1.577.0 cross-domain policy (GHSL-2024-035)

Posted by Angelo Barbosa | Aug 21, 2024 | CVE

A vulnerability was found in Casdoor up to 1.577.0. It has been classified as problematic. This affects an unknown part. The manipulation leads to permissive cross-domain policy with untrusted domains.

This vulnerability is uniquely identified as CVE-2024-41657. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-41657 | Casdoor up to 1.577.0 cross-domain policy (GHSL-2024-035)

Related Posts

CVE-2024-49630 | HT Plugins WP Education Plugin up to 1.2.8 on WordPress cross site scripting

CVE-2020-26071 | Cisco Catalyst SD-WAN Manager CLI path traversal (cisco-sa-vsoln-arbfile-gtsEYxns)

CVE-2024-8519 | Ultimate Member Plugin up to 2.8.6 on WordPress cross site scripting

CVE-2023-44402 | Electron up to 23.3.13 data authenticity (GHSA-7m48-wc93-9g85)