CVE-2024-49368 | 0xJacky Nginx-UI up to 2.0.0-beta.35 exec.Command input validation (GHSA-66m6-27r9-77vm)

Posted by Angelo Barbosa | Oct 21, 2024 | CVE

A vulnerability, which was classified as very critical, was found in 0xJacky Nginx-UI up to 2.0.0-beta.35. This affects the function exec.Command. The manipulation leads to improper input validation.

This vulnerability is uniquely identified as CVE-2024-49368. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49368 | 0xJacky Nginx-UI up to 2.0.0-beta.35 exec.Command input validation (GHSA-66m6-27r9-77vm)

Related Posts

CVE-2024-45460 | Manu225 Flipping Cards Plugin up to 1.30 on WordPress cross site scripting

CVE-2024-37162 | IdoPesok zsa up to 0.3.2 Application Transfer information exposure

CVE-2024-33589 | WPOmnia KB Support Plugin up to 1.6.0 on WordPress authorization

CVE-2023-47132 | N-able N-central prior 2023.6 API Privilege Escalation