Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:34 a.m.9 views

CVE-2024-0195

A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...

9.8CVSS9.8AI score0.19403EPSS
Exploits4References1
NVD
NVD
added 2024/01/02 9:15 p.m.19 views

CVE-2024-0195

A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...

9.8CVSS8.4AI score0.19403EPSS
Exploits4References3
Prion
Prion
added 2024/01/02 9:15 p.m.17 views

Code injection

A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...

6.5CVSS7.8AI score0.19403EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2024/01/02 9:0 p.m.30 views

CVE-2024-0195 spider-flow FunctionController.java FunctionService.saveFunction code injection

A vulnerability, which was classified as critical, was found in spider-flow 0.4.3. Affected is the function FunctionService.saveFunction of the file src/main/java/org/spiderflow/controller/FunctionController.java. The manipulation leads to code injection. It is possible to launch the attack...

6.5CVSS10AI score0.19403EPSS
Exploits4References3
CVE
CVE
added 2024/01/02 9:0 p.m.77 views

CVE-2024-0195

SpiderFlow 0.4.3 contains a code-injection vulnerability in FunctionService.saveFunction (FunctionController.java) that enables remote code execution. Multiple public references (NVD/Nuclei template, Red Hat/RH CVE pages, and GitHub exploit pages) confirm unauthenticated remote exploitation with ...

9.8CVSS9.7AI score0.19403EPSS
Exploits4References3Affected Software1
Rows per page
Query Builder