Vendor
ALCASAR
Products
1
CVEs
3
Across products
3
Status
Private
Products
1- 3 CVEs
Recent CVEs
3| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-38294 | 0.01 | — | 0.13 | Jun 13, 2024 | ALCASAR before 3.6.1 allows email_registration_back.php remote code execution. | |||
| CVE-2024-38295 | 0.01 | — | 0.07 | Jun 13, 2024 | ALCASAR before 3.6.1 allows still_connected.php remote code execution. | |||
| CVE-2024-38293 | 0.00 | — | 0.03 | Jun 13, 2024 | ALCASAR before 3.6.1 allows CSRF and remote code execution in activity.php. |
- CVE-2024-38294Jun 13, 2024risk 0.01cvss —epss 0.13
ALCASAR before 3.6.1 allows email_registration_back.php remote code execution.
- CVE-2024-38295Jun 13, 2024risk 0.01cvss —epss 0.07
ALCASAR before 3.6.1 allows still_connected.php remote code execution.
- CVE-2024-38293Jun 13, 2024risk 0.00cvss —epss 0.03
ALCASAR before 3.6.1 allows CSRF and remote code execution in activity.php.