← back
CVE-2024-32358

CVE-2024-32358

CVSS 7.5 HIGHEPSS 0.7%
An issue in Jpress v.5.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the custom plug-in module function, a different vulnerability than CVE-2024-43033.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://gist.github.com/rootlili/a6b6c89591f4773857ae81b7ca5898bchttps://gitee.com/JPressProjects/jpress/releases/tag/v5.1.0https://github.com/JPressProjects/jpress/releases/tag/v5.1.0https://www.jpress.cn/downloadhttps://www.wolai.com/catr00t/2LujDzjjcrAjUYpWtcusXD