216.73.217.176

CVE-2024-37879

· Published 20/09/2024 17:15 · Modified 26/09/2024 13:32

Labels: CVE-2024-37879 2024-09-20CVE-2024-37879[email protected]

Essential information

Published
20/09/2024 17:15
Modified
26/09/2024 13:32
Author
Creator
CISA KEV
No
CWE

Description

Improper input validation in /admin/config/save in User-friendly SVN (USVN) before v1.0.12 and below allows administrators to execute arbitrary code via the fields "siteTitle", "siteIco" and "siteLogo".

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References