Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Jan 27, 2025· Updated Jan 28, 2025

CVE-2024-57052

CVE-2024-57052

Description

An issue in youdiancms v.9.5.20 and before allows a remote attacker to escalate privileges via the sessionID parameter in the index.php file.

Affected products

2

YouDianCMS/YouDianCMScpe-rescue2 versions
(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=9.5.20

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

gist.github.com/yahaha9/720fb45bbebda62dc198568c8d275df8mitre

News mentions

0

No linked articles in our index yet.