CVE-2024-49770 | oak up to 17.1.2 API Context.send path traversal

Posted by Angelo Barbosa | Nov 1, 2024 | CVE

A vulnerability was found in oak up to 17.1.2. It has been rated as problematic. This issue affects the function Context.send of the component API. The manipulation leads to path traversal: ‘…/…//’.

The identification of this vulnerability is CVE-2024-49770. The attack may be initiated remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49770 | oak up to 17.1.2 API Context.send path traversal

Related Posts

CVE-2024-1080 | Beaver Builder Plugin up to 2.7.4.4 on WordPress Heading Tag cross site scripting

CVE-2024-49616 | Nyasro Rate Own Post Plugin up to 1.0 on WordPress sql injection

CVE-2024-4756 | WP Backpack Plugin up to 2.1 on WordPress cross site scripting

CVE-2024-4608 | SellKit Plugin up to 1.9.8 on WordPress id cross site scripting