CVE-2024-0412 | DeShang DSShop up to 3.1.0 HTTP GET Request public/install.php access control

Posted by Angelo Barbosa | Jan 11, 2024 | CVE

A vulnerability was found in DeShang DSShop up to 3.1.0. It has been declared as problematic. This vulnerability affects unknown code of the file public/install.php of the component HTTP GET Request Handler. The manipulation leads to improper access controls.

This vulnerability was named CVE-2024-0412. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-0412 | DeShang DSShop up to 3.1.0 HTTP GET Request public/install.php access control

Related Posts

CVE-2024-37370 | MIT Kerberos 5 up to 1.21.2 GSS Message Token Privilege Escalation

CVE-2023-42853 | Apple macOS prior 12.7/13.6/14.1 App access control

CVE-2024-0431 | Gestpay for WooCommerce Plugin up to 20221130 on WordPress ajax_set_default_card cross-site request forgery

CVE-2023-5457 | AiLux imx6 up to 1.0.7-1 product released in non-release configuration