CVE-2024-41924 | EC-CUBE PHP Package access control

Posted by Angelo Barbosa | Jul 30, 2024 | CVE

A vulnerability, which was classified as critical, was found in EC-CUBE. Affected is an unknown function of the component PHP Package Handler. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2024-41924. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-41924 | EC-CUBE PHP Package access control

Related Posts

CVE-2024-29786 | Google Android link_rx_pktproc.c pktproc_fill_data_addr_without_bm out-of-bounds write

CVE-2024-31455 | Stacklok Minder 0.0.39 sql injection

CVE-2024-33637 | Solid Plugins Solid Affiliate Plugin up to 1.9.1 on WordPress log file

CVE-2024-6555 | WP Popups Plugin up to 2.2.0.1 on WordPress information disclosure