CVE-2024-4894 | ITPison OMICARD EDM up to 5.x URL Parameter server-side request forgery

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability classified as critical has been found in ITPison OMICARD EDM up to 5.x. Affected is an unknown function of the component URL Parameter Handler. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2024-4894. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4894 | ITPison OMICARD EDM up to 5.x URL Parameter server-side request forgery

Related Posts

CVE-2020-26306 | benhmoore Knwl up to 1.0.2 redos (ID 106)

CVE-2024-37661 | TP-LINK TL-7DR5130 1.0.23 ICMP Redirect Message Remote Code Execution

CVE-2023-49950 | Logpoint SIEM up to 7.2.x Jinja Template cross site scripting

CVE-2024-31974 | Solarized FireDown Browser & Downloader 1.0.76 on Android WebView permission