Lucene search
SismicsTeedy1.12
2 matches found
CVE-2024-54852
When LDAP connection is activated in Teedy versions between 1.9 to 1.12, the username field of the login form is vulnerable to LDAP injection. Due to improper sanitization of user input, an unauthenticated attacker is then able to perform various malicious actions, such as creating arbitrary accoun...
9.8CVSS7.1AI score0.00717EPSS
CVE-2024-54851
Teedy
8.8CVSS8.8AI score0.00042EPSS