ghsa-96rx-8rv9-v6vx
Vulnerability from github
Published
2024-07-26 00:32
Modified
2024-07-26 00:32
Severity
Details
Softaculous Webuzo contains a command injection vulnerability in the FTP management functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system.
{ "affected": [], "aliases": [ "CVE-2024-24623" ], "database_specific": { "cwe_ids": [ "CWE-78" ], "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2024-07-25T22:15:05Z", "severity": "HIGH" }, "details": "Softaculous Webuzo contains a command injection vulnerability in the FTP management functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system.", "id": "GHSA-96rx-8rv9-v6vx", "modified": "2024-07-26T00:32:10Z", "published": "2024-07-26T00:32:10Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24623" }, { "type": "WEB", "url": "https://blog.exodusintel.com/2024/07/25/softaculous-webuzo-ftp-management-command-injection" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }
Loading...