Today > | 4 High | 23 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-44786

Nov. 27, 2024, 5:15 p.m.

Product(s) Impacted

Meabilis CMS

  • 1.0

Description

Incorrect access control in Meabilis CMS 1.0 allows attackers to access other users' address books via unspecified vectors.

Weaknesses

CWE-276
Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

CWE ID: 276

Date

Published: Nov. 22, 2024, 5:15 p.m.

Last Modified: Nov. 27, 2024, 5:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References