CVE-2024-50702 | TeamPass up to 3.1.3.0 Action Mail mail_me privileges assignment

Posted by Angelo Barbosa | Dec 30, 2024 | CVE

A vulnerability was found in TeamPass up to 3.1.3.0. It has been rated as critical. Affected by this issue is the function mail_me of the component Action Mail Handler. The manipulation leads to incorrect privilege assignment.

This vulnerability is handled as CVE-2024-50702. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-50702 | TeamPass up to 3.1.3.0 Action Mail mail_me privileges assignment

Related Posts

CVE-2023-52161 | Linux Kernel Access Point eapol.c eapol_auth_key_handle improper authorization

CVE-2024-53481 | PHPGurukul Beauty Parlour Management System 1.1 profile.php Firstname/Last name cross site scripting

CVE-2022-49040 | Synology Drive Client prior 3.5.0-16084 Connection Management buffer overflow (SA_24_10)

CVE-2024-25128 | dpgaspar Flask-AppBuilder up to 4.3.10 OpenID Service improper authentication