216.73.216.86

CVE-2024-6947

· Published 21/07/2024 09:15 · Modified 21/07/2024 09:15

Labels: CVE-2024-6947 2024-07-21CVE-2024-6947CWE-94[email protected]

Essential information

Published
21/07/2024 09:15
Modified
21/07/2024 09:15
Author
Creator
CVSS
4.7 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

CVSS metrics

Description

A vulnerability was found in Flute CMS 0.2.2.4-alpha. It has been rated as critical. This issue affects the function replaceContent of the file app/Core/Support/ContentParser.php of the component Notification Handler. The manipulation leads to code injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-272069 was assigned to this vulnerability.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References