CVE-2024-38874 | events2 Extension up to 8.3.7/9.0.5 on TYPO3 resource injection

Posted by Angelo Barbosa | Jun 21, 2024 | CVE

A vulnerability was found in events2 Extension up to 8.3.7/9.0.5 on TYPO3. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper control of resource identifiers.

This vulnerability is known as CVE-2024-38874. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38874 | events2 Extension up to 8.3.7/9.0.5 on TYPO3 resource injection

Related Posts

CVE-2024-36543 | STRIMZI up to 0.41.0 Kafka Connect REST API access control

CVE-2024-38356 | TinyMCE up to 5.11.0/6.8.3/7.2.0 cross site scripting (GHSA-9hcv-j9pv-qmph)

CVE-2024-2999 | Campcodes Online Art Gallery Management System 1.0 /admin/adminHome.php uname sql injection

CVE-2024-7794 | itsourcecode Vehicle Management System 1.0 mybill.php id sql injection