CVE-2024-56799 | TrueWinter simofa up to 0.2.6 API Route RouteLoader missing authentication (GHSA-83qw-5qq5-v7pq)

Posted by Angelo Barbosa | Dec 31, 2024 | CVE

A vulnerability was found in TrueWinter simofa up to 0.2.6. It has been rated as critical. Affected by this issue is the function RouteLoader of the component API Route Handler. The manipulation leads to missing authentication.

This vulnerability is handled as CVE-2024-56799. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-56799 | TrueWinter simofa up to 0.2.6 API Route RouteLoader missing authentication (GHSA-83qw-5qq5-v7pq)

Related Posts

CVE-2024-40551 | Sanluan PublicCMS 4.0.202302.e File doUpload unrestricted upload

CVE-2024-41990 | gofiber Django up to 4.2.14/5.0.7 Template Filter urlize/urlizetrunc denial of service

CVE-2024-2124 | Translate and Go Multilingual Plugin up to 4.2.5 on WordPress Block Attribute cross site scripting

CVE-2024-39565 | Juniper Networks Junos OS up to 23.4R1-S1 J-Web xpath injection (JSA83023)