CVE-2024-50334 | Erudika scoold up to 1.63.x Setting /api authentication bypass

Posted by Angelo Barbosa | Oct 29, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Erudika scoold up to 1.63.x. Affected by this issue is some unknown functionality of the file /api of the component Setting Handler. The manipulation leads to authentication bypass using alternate channel.

This vulnerability is handled as CVE-2024-50334. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-50334 | Erudika scoold up to 1.63.x Setting /api authentication bypass

Related Posts

CVE-2024-25091 | Js Communications RevoWorks SCVX/RevoWorks Browser VirusChecker/ThreatChecker protection mechanism

CVE-2024-31137 | JetBrains TeamCity prior 2024.03 Space Connection Configuration cross site scripting

CVE-2023-50566 | EyouCMS 1.6.5-UTF8 Public Security Registration Number cross site scripting (Issue 56)

CVE-2024-27330 | Tracker Software PDF-XChange Editor EMF File Parser out-of-bounds