CVE-2024-1063 | Appwrite up to 1.4.13 /v1/avatars/favicon server-side request forgery

Posted by Angelo Barbosa | Jan 30, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Appwrite up to 1.4.13. This issue affects some unknown processing of the file /v1/avatars/favicon. The manipulation leads to server-side request forgery.

The identification of this vulnerability is CVE-2024-1063. The attack may be initiated remotely. There is no exploit available.

CVE-2024-1063 | Appwrite up to 1.4.13 /v1/avatars/favicon server-side request forgery

Related Posts

CVE-2024-0221 | 10Web Photo Gallery Plugin up to 1.8.19 on WordPress File Rename path traversal

CVE-2023-50693 | dom96 Jester up to 0.6.0 Request Privilege Escalation (Issue 326)

CVE-2024-28130 | OFFIS DCMTK 3.6.8 createFromImage type conversion (TALOS-2024-1957)

CVE-2023-46840 | Xen Device access control