CVE-2024-2827 | lakernote EasyAdmin up to 20240315 saveReportFile server-side request forgery (I98ZTA)

Posted by Angelo Barbosa | Mar 22, 2024 | CVE

A vulnerability, which was classified as critical, has been found in lakernote EasyAdmin up to 20240315. This issue affects some unknown processing of the file /ureport/designer/saveReportFile. The manipulation leads to server-side request forgery.

The identification of this vulnerability is CVE-2024-2827. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-2827 | lakernote EasyAdmin up to 20240315 saveReportFile server-side request forgery (I98ZTA)

Related Posts

CVE-2024-36056 | MarvinTest Solutions HW.exe prior 5.0.5.0 IOCTL Hw64.sys allocation of resources

CVE-2022-4958 | qkmc-rk redbbs 1.0 Post title cross site scripting

CVE-2024-32658 | FreeRDP up to 3.5.0 out-of-bounds (GHSA-vpv3-m3m9-4c2v)

CVE-2023-7055 | PHPGurukul Online Notes Sharing System 1.0 Contact Information /user/profile.php mobilenumber access control