High severityNVD Advisory· Published Mar 29, 2024· Updated Aug 21, 2024
CodeIgniter4 Language class DoS Vulnerability
CVE-2024-29904
Description
CodeIgniter is a PHP full-stack web framework A vulnerability was found in the Language class that allowed DoS attacks. This vulnerability can be exploited by an attacker to consume a large amount of memory on the server. Upgrade to v4.4.7 or later.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
codeigniter4/frameworkPackagist | < 4.4.7 | 4.4.7 |
Affected products
2- Range: < 4.4.7
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-39fp-mqmm-gxj6ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-29904ghsaADVISORY
- github.com/codeigniter4/CodeIgniter4/commit/fa851acbae7ae4c5a97f8f38ae87aa0822a334c0ghsax_refsource_MISCWEB
- github.com/codeigniter4/CodeIgniter4/security/advisories/GHSA-39fp-mqmm-gxj6ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.