Lucene search
+L

10 matches found

redhatcve
redhatcve
added 2025/05/23 9:46 a.m.11 views

CVE-2024-25293

mjml-app versions 3.0.4 and 3.1.0-beta were discovered to contain a remote code execution RCE via the href attribute...

9.3CVSS8.3AI score0.00994EPSS
Exploits2References1
githubexploit
githubexploit
added 2024/09/06 6:12 a.m.584 views

Exploit for Code Injection in Mjml Mjml_App

MJML Local Code Execution PoC A Proof-Of-Concept for CVE-2024...

9.3CVSS8.5AI score0.00994EPSS
Exploits2
nvd
nvd
added 2024/03/01 6:15 a.m.26 views

CVE-2024-25293

mjml-app versions 3.0.4 and 3.1.0-beta were discovered to contain a remote code execution RCE via the href attribute...

9.3CVSS8AI score0.00994EPSS
Exploits2References1
osv
osv
added 2024/03/01 6:15 a.m.5 views

CVE-2024-25293

mjml-app versions 3.0.4 and 3.1.0-beta were discovered to contain a remote code execution RCE via the href attribute...

9.3CVSS6.3AI score0.00994EPSS
Exploits2References1
prion
prion
added 2024/03/01 6:15 a.m.18 views

Remote code execution

mjml-app versions 3.0.4 and 3.1.0-beta were discovered to contain a remote code execution RCE via the href attribute...

8.7AI score0.00994EPSS
Exploits2References1
ptsecurity
ptsecurity
added 2024/03/01 12:0 a.m.5 views

PT-2024-20866 · Mjml-App · Mjml-App

Name of the Vulnerable Software and Affected Versions: mjml-app versions 3.0.4 through 3.1.0-beta Description: The issue allows for remote code execution RCE via the href attribute. Recommendations: For versions 3.0.4 and 3.1.0-beta, consider restricting access to the href attribute until a patch...

9.3CVSS7.3AI score0.00994EPSS
Exploits2References4
cnnvd
cnnvd
added 2024/03/01 12:0 a.m.4 views

MJML App Security Vulnerability

MJML App is an MJML open source MJML desktop application. A security vulnerability exists in mjml-app version 3.0.4 and 3.1.0-beta, which stems from a Remote Code Execution RCE vulnerability in the href attribute...

9.3CVSS7.3AI score0.00994EPSS
Exploits2References2
vulnrichment
vulnrichment
added 2024/03/01 12:0 a.m.15 views

CVE-2024-25293

mjml-app versions 3.0.4 and 3.1.0-beta were discovered to contain a remote code execution RCE via the href attribute...

8.6AI score0.00994EPSS
Exploits2References1
cvelist
cvelist
added 2024/03/01 12:0 a.m.29 views

CVE-2024-25293

mjml-app versions 3.0.4 and 3.1.0-beta were discovered to contain a remote code execution RCE via the href attribute...

8.2AI score0.00994EPSS
Exploits2References1
cve
cve
added 2024/03/01 12:0 a.m.85 views

CVE-2024-25293

CVE-2024-25293 affects mjml-app versions 3.0.4 and 3.1.0-beta. Multiple sources confirm a remote code execution (RCE) via the href attribute, notably involving the mj-button tag and path traversal, enabling local code execution. An exploit PoC is available (PoC repository linked in connected docu...

9.3CVSS8.2AI score0.00994EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder