CVE-2023-6849 | kalcaddle kodbox up to 1.48 app.php cover path server-side request forgery

Posted by Angelo Barbosa | Dec 15, 2023 | CVE

A vulnerability was found in kalcaddle kodbox up to 1.48. It has been rated as critical. Affected by this issue is the function cover of the file plugins/fileThumb/app.php. The manipulation of the argument path leads to server-side request forgery.

This vulnerability is handled as CVE-2023-6849. The attack may be launched remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2023-6849 | kalcaddle kodbox up to 1.48 app.php cover path server-side request forgery

Related Posts

CVE-2024-39933 | Gogs up to 0.13.0 New Release argument injection

CVE-2024-49257 | Denis Azz Anonim Posting Plugin up to 0.9 on WordPress unrestricted upload

CVE-2024-38483 | Dell Client Platform BIOS prior 1.26.0/1.35.0/2.32.0 input validation (dsa-2024-260)

CVE-2024-32927 | Google Android RadioExt.cpp sendDeviceState_1_6 use after free