Flute Security Vulnerabilities and Issues — Flute CVE List

Lucene search

Flute-cmsFlute

3 matches found

CVE•added 2024/07/21 9:15 a.m.•41 views

CVE-2024-6947

A vulnerability was found in Flute CMS 0.2.2.4-alpha. It has been rated as critical. This issue affects the function replaceContent of the file app/Core/Support/ContentParser.php of the component Notification Handler. The manipulation leads to code injection. The attack may be initiated remotely. T...

8.8CVSS5.4AI score0.00088EPSS

CVE•added 2024/07/21 9:15 a.m.•40 views

CVE-2024-6946

A vulnerability was found in Flute CMS 0.2.2.4-alpha. It has been declared as critical. This vulnerability affects unknown code of the file /admin/pages/list. The manipulation of the argument blocks leads to code injection. The attack can be initiated remotely. The exploit has been disclosed to the...

8.8CVSS5.4AI score0.00088EPSS

CVE•added 2024/07/21 8:15 a.m.•36 views

CVE-2024-6945

A vulnerability was found in Flute CMS 0.2.2.4-alpha. It has been classified as critical. This affects an unknown part of the file app/Core/Http/Controllers/Profile/ImagesController.php of the component Avatar Upload Page. The manipulation of the argument avatar leads to unrestricted upload. It is ...

9.8CVSS6.5AI score0.0009EPSS