| Reporter | Title | Published | Views | Family All 19 |
|---|---|---|---|---|
| changedetection 0.45.20 Remote Code Execution Exploit | 2 Jun 202400:00 | – | zdt | |
| Exploit for CVE-2024-32651 | 16 Sep 202413:11 | – | githubexploit | |
| Exploit for CVE-2024-32651 | 16 Sep 202413:11 | – | githubexploit | |
| CVE-2024-32651 | 25 Apr 202420:27 | – | circl | |
| ChangeDetection.io 安全漏洞 | 25 Apr 202400:00 | – | cnnvd | |
| CVE-2024-32651 | 25 Apr 202423:49 | – | cve | |
| CVE-2024-32651 Server Side Template Injection in Jinja2 allows Remote Command Execution | 25 Apr 202423:49 | – | cvelist | |
| changedetection < 0.45.20 - Remote Code Execution (RCE) | 31 May 202400:00 | – | exploitdb | |
| changedetection.io has a Server Side Template Injection using Jinja2 which allows Remote Command Execution | 15 Oct 202418:05 | – | github | |
| CVE-2024-32651 | 26 Apr 202400:15 | – | nvd |
id: CVE-2024-32651
info:
name: Change Detection - Server Side Template Injection
author: edoardottt
severity: critical
description: |
A Server Side Template Injection in changedetection.io caused by usage of unsafe functions of Jinja2 allows Remote Command Execution on the server host.
impact: |
Unauthenticated attackers can execute arbitrary code on the server through Server Side Template Injection.
remediation: |
Update changedetection.io to version 0.45.21 or later.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2024-32651
- https://github.com/dgtlmoon/changedetection.io/security/advisories/GHSA-4r7v-whpg-8rx3
- https://github.com/dgtlmoon/changedetection.io/releases/tag/0.45.21
- https://www.onsecurity.io/blog/server-side-template-injection-with-jinja2
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
cvss-score: 10
cve-id: CVE-2024-32651
cwe-id: CWE-1336
epss-score: 0.83722
epss-percentile: 0.99655
metadata:
verified: true
max-request: 1
shodan-query: html:"Change Detection"
tags: cve,cve2024,changedetection,ssti,rce,passive,vuln
http:
- method: GET
path:
- "{{RootURL}}/"
redirects: true
max-redirects: 2
extractors:
- type: xpath
name: version
internal: true
xpath:
- "//*[@id=\"right-sticky\"]"
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
part: body
words:
- "Change Detection"
condition: and
- type: dsl
dsl:
- compare_versions(version, '<= 0.45.20')
# digest: 4a0a0047304502210089cedd485d72bd6bcdd05837c0be96da289afaec87f7b2dd1eaaddf78feab634022024576cbfb350d2f0de87f05394bbf196540045d15f5a254ed55f488fa62a4bda:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation