CVE-2024-10620 | knightliao Disconf 2.6.36 Configuration Center /api/config/list improper authentication

Posted by Angelo Barbosa | Oct 31, 2024 | CVE

A vulnerability was found in knightliao Disconf 2.6.36. It has been classified as critical. This affects an unknown part of the file /api/config/list of the component Configuration Center. The manipulation leads to improper authentication.

This vulnerability is uniquely identified as CVE-2024-10620. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-10620 | knightliao Disconf 2.6.36 Configuration Center /api/config/list improper authentication

Related Posts

CVE-2024-6132 | Pexels Plugin up to 1.2.2 on WordPress unrestricted upload

CVE-2024-27659 | D-Link DIR-823G 1.0.2B05 sub_42AF30 null pointer dereference

CVE-2024-27411 | Linux Kernel up to 6.7.8 nouveau allocation of resources (be00e15b240e/f6ecfdad359a)

CVE-2024-31219 | discourse-reactions up to 0.4 information disclosure (GHSA-7cqc-5xrw-xh67)