Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 6:52 a.m.6 views

CVE-2024-32003

wn-dusk-plugin Dusk plugin is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having ...

8.8CVSS8.8AI score0.00672EPSS
Exploits0References1
NVD
NVD
added 2024/04/12 9:15 p.m.22 views

CVE-2024-32003

wn-dusk-plugin Dusk plugin is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having ...

8.8CVSS8.9AI score0.00672EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/04/12 8:21 p.m.13 views

CVE-2024-32003 Dusk plugin may allow unfettered user authentication in misconfigured installs

wn-dusk-plugin Dusk plugin is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having ...

8.8CVSS7AI score0.00672EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/12 8:21 p.m.32 views

CVE-2024-32003 Dusk plugin may allow unfettered user authentication in misconfigured installs

wn-dusk-plugin Dusk plugin is a plugin which integrates Laravel Dusk browser testing into Winter CMS. The Dusk plugin provides some special routes as part of its testing framework to allow a browser environment such as headless Chrome to act as a user in the Backend or User plugin without having ...

8.8CVSS9.1AI score0.00672EPSS
Exploits0References2
CVE
CVE
added 2024/04/12 8:21 p.m.54 views

CVE-2024-32003

The CVE-2024-32003 issue affects the wn-dusk-plugin (Winter CMS Dusk plugin), where a special route [[URL]]/_dusk/login/[[USER ID]]/[[MANAGER]] could allow unauthenticated access to user accounts if the Dusk plugin is publicly available and misconfigured. The attached connected documentation conf...

8.8CVSS6.9AI score0.00672EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/04/12 12:0 a.m.3 views

Dusk Plugin 安全漏洞

Dusk Plugin is a plugin that provides support for the Laravel Dusk testing paradigm. A security vulnerability exists in Dusk Plugin that originates from allowing routing to gain access to any user account...

8.8CVSS8.4AI score0.00672EPSS
Exploits0References3
Rows per page
Query Builder