CVE-2024-39915 | sni Thruk up to 3.15 /script/html2pdf.sh URL code injection

Posted by Angelo Barbosa | Jul 15, 2024 | CVE

A vulnerability classified as critical has been found in sni Thruk up to 3.15. This affects an unknown part of the file /script/html2pdf.sh. The manipulation of the argument URL leads to code injection.

This vulnerability is uniquely identified as CVE-2024-39915. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39915 | sni Thruk up to 3.15 /script/html2pdf.sh URL code injection

Related Posts

CVE-2024-6580 | n software IPWorks SSH SFTPServer prior 22.0.8945/24.0.8945 weak authentication

CVE-2024-0769 | D-Link DIR-859 1.06B01 HTTP POST Request /hedwig.cgi service path traversal

CVE-2023-50947 | IBM Business Automation Workflow 22.0.2/23.0.1/23.0.2 Web UI cross site scripting (XFDB-275665)

CVE-2024-32771 | QNAP QTS/QuTS hero/QuTScloud excessive authentication (qsa-24-28)