CVE-2024-1198
The CVE-2024-1198 entry concerns openBI up to 6.0.3. Affected is the function addxinzhi in application/controllers/User.php of the Phar Handler. Manipulation of the outimgurl argument leads to deserialization, enabling a remote attack. The vulnerability is actively discussed across multiple sourc...