Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 16/03/2024 Updated: 17/03/2024

This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Allegra. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the unzipFile method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of LOCAL SERVICE.

Debian Bug report logs - #1067641 python-djangorestframework-simplejwt: CVE-2024-22513 Package: src:python-djangorestframework-simplejwt; Maintainer for src:python-djangorestframework-simplejwt is Debian Python Team <team+python@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 24 M ...

Django REST Framework SimpleJWT versions 531 and below suffer from an information disclosure vulnerability ...

https://github.com/dmdhrumilmistry/CVEs/tree/main/CVE-2024-22513 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1067641 https://nvd.nist.gov https://www.zerodayinitiative.com/advisories/ZDI-24-101/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2024-22513

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect