2 matches found
CVE-2024-4320
A remote code execution RCE vulnerability exists in the '/installextension' endpoint of the parisneo/lollms-webui application, specifically within the @router.post"/installextension" route handler. The vulnerability arises due to improper handling of the name parameter in the...
PT-2024-30366 · Unknown · Parisneo/Lollms-Webui
Name of the Vulnerable Software and Affected Versions: parisneo/lollms-webui affected versions not specified Description: A remote code execution RCE vulnerability exists in the '/install extension' endpoint of the parisneo/lollms-webui application. The vulnerability arises due to improper handli...