Lucene search
+L

6 matches found

vulnersOsv
vulnersOsv
added 2024/06/02 10:28 p.m.5 views

cjkcms-seo (=2.4.0), wagtail-liveedit (>=0.0.9 <=0.0.10) +7 more potentially affected by CVE-2024-35228 via wagtail (>=6.0.0 <=6.0.2)

wagtail PYPI version =6.0.0, =0.0.9, =0.14.0, =0.6.0, =0.1.0, =0.1.0, =0.2.0 Source cves: CVE-2024-35228 Source advisory: OSV:GHSA-XXFM-VMCF-G33F...

5.5CVSS6AI score0.0033EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/06/02 10:28 p.m.7 views

django-cast (=0.2.33), wagtail-liveedit (=0.0.11) potentially affected by CVE-2024-35228 via wagtail (>=6.1.0 <=6.1.0rc2)

wagtail PYPI version =6.1.0, =6.1.0rc2 is affected by a known vulnerability. The following packages have a transitive dependency on wagtail and may be impacted: - django-cast =0.2.33 - wagtail-liveedit =0.0.11 Source cves: CVE-2024-35228 Source advisory: OSV:GHSA-XXFM-VMCF-G33F...

5.5CVSS6AI score0.0033EPSS
Exploits0
Cvelist
Cvelist
added 2024/05/30 6:44 p.m.39 views

CVE-2024-35228 Improper Handling of Insufficient Permissions in Wagtail

Wagtail is an open source content management system built on Django. Due to an improperly applied permission check in the wagtail.contrib.settings module, a user with access to the Wagtail admin and knowledge of the URL of the edit view for a settings model can access and update that setting, eve...

5.5CVSS5.4AI score0.0033EPSS
Exploits0References2
CVE
CVE
added 2024/05/30 6:44 p.m.56 views

CVE-2024-35228

CVE-2024-35228 affects Wagtail (Django-based CMS) via an improperly applied permission check in the wagtail.contrib.settings module. A user with access to the Wagtail admin and knowledge of the edit view URL can access and update the setting even without model permissions. The vulnerability is no...

5.5CVSS5.4AI score0.0033EPSS
Exploits0References2
OSV
OSV
added 2024/05/30 6:44 p.m.29 views

CVE-2024-35228 Improper Handling of Insufficient Permissions in Wagtail

Wagtail is an open source content management system built on Django. Due to an improperly applied permission check in the wagtail.contrib.settings module, a user with access to the Wagtail admin and knowledge of the URL of the edit view for a settings model can access and update that setting, eve...

5.5CVSS5.3AI score0.0033EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/30 6:44 p.m.19 views

CVE-2024-35228 Improper Handling of Insufficient Permissions in Wagtail

Wagtail is an open source content management system built on Django. Due to an improperly applied permission check in the wagtail.contrib.settings module, a user with access to the Wagtail admin and knowledge of the URL of the edit view for a settings model can access and update that setting, eve...

5.5CVSS6.7AI score0.0033EPSS
Exploits0References2
Rows per page
Query Builder