CVE-2024-6947 | Flute CMS 0.2.2.4-alpha Notification ContentParser.php replaceContent code injection

Posted by Angelo Barbosa | Jul 20, 2024 | CVE

A vulnerability was found in Flute CMS 0.2.2.4-alpha. It has been rated as critical. This issue affects the function replaceContent of the file app/Core/Support/ContentParser.php of the component Notification Handler. The manipulation leads to code injection.

The identification of this vulnerability is CVE-2024-6947. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-6947 | Flute CMS 0.2.2.4-alpha Notification ContentParser.php replaceContent code injection

Related Posts

CVE-2024-32441 | Zoho Campaigns Plugin up to 2.0.7 on WordPress cross-site request forgery

CVE-2024-4104 | ADFO Plugin up to 1.9.0 on WordPress Admin Dashboard Page cross site scripting

CVE-2024-21499 | greenpau caddy-security X-Forwarded-Proto http headers for scripting syntax (Issue 270)

CVE-2024-27416 | Linux Kernel up to 6.7.8 Bluetooth information disclosure