CVE-2024-4499 | parisneo lollms up to 9.6 XTTS Server cross-site request forgery

Posted by Angelo Barbosa | Jun 24, 2024 | CVE

A vulnerability classified as problematic was found in parisneo lollms up to 9.6. Affected by this vulnerability is an unknown functionality of the component XTTS Server. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-4499. The attack can be launched remotely. There is no exploit available.

CVE-2024-4499 | parisneo lollms up to 9.6 XTTS Server cross-site request forgery

Related Posts

CVE-2023-49801 | Lif-Platforms Lif-Auth-Server up to 1.3.x get_pfp/get_banner path traversal (GHSA-3v77-pvqq-qg3f)

CVE-2024-2972 | Floating Chat Widget Plugin up to 3.1.8 on WordPress Setting cross site scripting

CVE-2023-48104 | Alinto SOGo 5.8.0 cross site scripting

CVE-2024-5341 | Plus Addons for Elementor Page Builder Plugin up to 5.5.4 on WordPress cross site scripting