3 matches found
CVE-2024-13118
The IP Based Login WordPress plugin before 2.4.1 does not have CSRF checks in some places, which could allow attackers to make logged in users delete all logs via a CSRF attack...
Cockpit 代码问题漏洞
Cockpit is an interactive server management interface. A code issue vulnerability exists in versions prior to Cockpit 2.4.1 that stems from a lack of extension checking during file uploads. An attacker can exploit this vulnerability to execute malicious code in the server...
PT-2020-10464 · Apache +5 · Mod Auth Openidc +5
Name of the Vulnerable Software and Affected Versions: mod auth openidc versions prior to 2.4.1 Description: A flaw exists in the handling of URLs with a slash and backslash at the beginning, leading to an open redirect issue. Recommendations: For versions prior to 2.4.1, update to version 2.4.1 ...