CVE-2023-49795 | MindsDB up to 23.11.4.0 file.py server-side request forgery (GHSA-34mr-6q8x-g9r6)

Posted by Angelo Barbosa | Dec 11, 2023 | CVE

A vulnerability was found in MindsDB up to 23.11.4.0 and classified as critical. This issue affects some unknown processing of the file file.py. The manipulation leads to server-side request forgery.

The identification of this vulnerability is CVE-2023-49795. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49795 | MindsDB up to 23.11.4.0 file.py server-side request forgery (GHSA-34mr-6q8x-g9r6)

Related Posts

CVE-2024-7279 | SourceCodester Lot Reservation Management System 1.0 ajax.php username sql injection

CVE-2024-41014 | Linux Kernel up to 6.10 xfs xlog_recover_process_data out-of-bounds (fb63435b7c7d)

CVE-2024-34379 | Rara Theme Restaurant and Cafe Plugin up to 1.2.1 on WordPress cross-site request forgery

HPE ArubaOS denial of service (ARUBA-PSA-2023-017)