VYPR
High severity7.3NVD Advisory· Published Jan 19, 2024· Updated Jun 17, 2026

CVE-2024-0739

CVE-2024-0739

Description

A vulnerability, which was classified as critical, was found in Hecheng Leadshop up to 1.4.20. Affected is an unknown function of the file /web/leadshop.php. The manipulation of the argument install leads to deserialization. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-251562 is the identifier assigned to this vulnerability.

Affected products

2
  • Hecheng/Leadshopllm-fuzzy2 versions
    <=1.4.20+ 1 more
    • (no CPE)range: <=1.4.20
    • (no CPE)range: 1.4.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.