7 matches found
CVE-2024-44677
eladmin v2.7 and before is vulnerable to Server-Side Request Forgery SSRF which allows an attacker to execute arbitrary code via the DatabaseController.java component...
CVE-2024-44676
eladmin v2.7 and before is vulnerable to Cross Site Scripting XSS which allows an attacker to execute arbitrary code via LocalStoreController. java...
CVE-2024-44677
Summary (CVE-2024-44677) eladmin v2.7 and earlier is vulnerable to Server-Side Request Forgery (SSRF) via the DatabaseController.java component, enabling an attacker to execute arbitrary code. This aligns with Red Hat and CVE records describing a high-severity, network-based impact with no privil...
CVE-2024-44676
eladmin v2.7 and before is vulnerable to Cross Site Scripting XSS which allows an attacker to execute arbitrary code via LocalStoreController. java...
CVE-2024-44676
CVE-2024-44676 affects eladmin v2.7 and earlier. The vulnerability is described as a Cross Site Scripting (XSS) flaw that allows an attacker to execute arbitrary code via LocalStoreController.java. Public documents provide multiple attestations of this issue (NVD/NVD-derived metrics and Red Hat/O...
CVE-2024-44677
eladmin v2.7 and before is vulnerable to Server-Side Request Forgery SSRF which allows an attacker to execute arbitrary code via the DatabaseController.java component...
CVE-2024-44677
eladmin v2.7 and before is vulnerable to Server-Side Request Forgery SSRF which allows an attacker to execute arbitrary code via the DatabaseController.java component...