CVE-2024-49367 | 0xJacky Nginx-UI up to 2.0.0-beta.35 Log File Content /api/configs authorization

Posted by Angelo Barbosa | Oct 21, 2024 | CVE

A vulnerability was found in 0xJacky Nginx-UI up to 2.0.0-beta.35. It has been declared as problematic. This vulnerability affects unknown code of the file /api/configs of the component Log File Content Handler. The manipulation leads to missing authorization.

This vulnerability was named CVE-2024-49367. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49367 | 0xJacky Nginx-UI up to 2.0.0-beta.35 Log File Content /api/configs authorization

Related Posts

CVE-2021-47172 | Linux Kernel up to 5.4.123/5.10.41/5.12.8 ad7124 buffer overflow

CVE-2024-20074 | MediaTek MT8676 dmc out-of-bounds write (ALPS08668110)

CVE-2024-45002 | Linux Kernel up to 6.1.106/6.6.47/6.10.6 osnoise_free_top null pointer dereference

CVE-2024-30442 | BoldThemes Bold Page Builder Plugin up to 4.8.0 on WordPress cross site scripting