Unrated severityNVD Advisory· Published Jul 25, 2024· Updated Aug 1, 2024
Softaculous Webuzo Password Reset Command Injection
CVE-2024-24622
Description
Softaculous Webuzo contains a command injection in the password reset functionality. A remote, authenticated attacker can exploit this vulnerability to gain code execution on the system.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 3.2.1
Patches
Vulnerability mechanics
References
1- blog.exodusintel.com/2024/07/24/softaculous-webuzo-password-reset-command-injection/mitrethird-party-advisory
News mentions
0No linked articles in our index yet.