Allegra saveInlineEdit Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
NVD | CVE-2023-51647 | 22 Nov 202420:15 | – | nvd |
Cvelist | CVE-2023-51647 Allegra saveInlineEdit Directory Traversal Remote Code Execution Vulnerability | 22 Nov 202420:05 | – | cvelist |
CVE | CVE-2023-51647 | 22 Nov 202420:15 | – | cve |
[
{
"cpes": [
"cpe:2.3:a:alltena:allegra:7.5.0build29:*:*:*:*:*:*:*"
],
"vendor": "alltena",
"product": "allegra",
"versions": [
{
"status": "affected",
"version": "7.5.0build29"
}
],
"defaultStatus": "unknown"
}
]
Source | Link |
---|---|
zerodayinitiative | www.zerodayinitiative.com/advisories/ZDI-24-108/ |
trackplus | www.trackplus.com/en/service/release-notes-reader/7-5-1-release-notes-2.html |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo