CVE-2024-4894 | ITPison OMICARD EDM up to 5.x URL Parameter server-side request forgery

Posted by Angelo Barbosa | May 15, 2024 | CVE

A vulnerability classified as critical has been found in ITPison OMICARD EDM up to 5.x. Affected is an unknown function of the component URL Parameter Handler. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2024-4894. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4894 | ITPison OMICARD EDM up to 5.x URL Parameter server-side request forgery

Related Posts

CVE-2024-36788 | Netgear WNR614/N300 cookie httponly flag

CVE-2024-34079 | octo-sts app prior 0.1.0 STS Service resource consumption

CVE-2024-38430 | Matrix Tafnit prior 8.4.202 cross site scripting

CVE-2024-36421 | FlowiseAI Flowise up to 1.4.3 origin validation (GHSL-2023-232)