4 matches found
CVE-2024-1297
Loomio version 2.22.0 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to OS Command Injection...
CVE-2024-1297 Loomio 2.22.0 - Code injection
Loomio version 2.22.0 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to OS Command Injection...
CVE-2024-1297
Affected software: Loomio 2.22.0. Vulnerability: OS Command Injection allowing execution of arbitrary server commands. This is the underlying root cause stated across sources, enabling an attacker to run commands with the server’s privileges. Impact (as described): high/critical in various assess...
CVE-2024-1297 Loomio 2.22.0 - Code injection
Loomio version 2.22.0 allows executing arbitrary commands on the server. This is possible because the application is vulnerable to OS Command Injection...