exploitDog

CVE-2024-25169

Опубликовано: 28 фев. 2024

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

An issue in Mezzanine v6.0.0 allows attackers to bypass access control mechanisms in the admin panel via a crafted request.

Ссылки

https://github.com/shenhav12/CVE-2024-25169-Mezzanine-v6.0.0
Third Party Advisory
https://ibb.co/JKh4hmD
Exploit
https://ibb.co/Pt9qd8t
Exploit
https://ibb.co/hLLPTVp
Exploit
https://ibb.co/rfrKj3r
Exploit
https://github.com/shenhav12/CVE-2024-25169-Mezzanine-v6.0.0
Third Party Advisory
https://ibb.co/JKh4hmD
Exploit
https://ibb.co/Pt9qd8t
Exploit
https://ibb.co/hLLPTVp
Exploit
https://ibb.co/rfrKj3r
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:jupo:mezzanine:6.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00804

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-Other

CWE-284

Связанные уязвимости

GHSA-qp56-82vp-xqgv

github

почти 2 года назад

Mezzanine allows attackers to bypass access control mechanisms

EPSS

Процентиль: 74%

0.00804

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-Other

CWE-284