CVE-2024-1021 | Rebuild up to 3.5.5 HTTP Request readRawText url server-side request forgery

Posted by Angelo Barbosa | Jan 29, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Rebuild up to 3.5.5. Affected by this issue is the function readRawText of the component HTTP Request Handler. The manipulation of the argument url leads to server-side request forgery.

This vulnerability is handled as CVE-2024-1021. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-1021 | Rebuild up to 3.5.5 HTTP Request readRawText url server-side request forgery

Related Posts

CVE-2024-26850 | Linux Kernel up to 6.6.20/6.7.8 on PUD debug_vm_pgtable Privilege Escalation (d2a9510c0e39/eeeddf85fc58/720da1e593b8)

CVE-2024-4045 | OptinMonster Popup Builder Plugin up to 2.16.1 on WordPress cross site scripting

CVE-2024-45447 | Huawei HarmonyOS/EMUI Camera Framework Module information disclosure

CVE-2024-1679 | Print Labels with Barcodes Plugin up to 3.4.6 on WordPress Templates cross site scripting