VYPR
Medium severity4.7NVD Advisory· Published Aug 17, 2024· Updated Jun 17, 2026

CVE-2024-7899

CVE-2024-7899

Description

A vulnerability, which was classified as critical, has been found in InnoCMS 0.3.1. This issue affects some unknown processing of the file /panel/pages/1/edit of the component Backend. The manipulation leads to code injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Affected products

2
  • InnoCMS/InnoCMScpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: =0.3.1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.