CVE-2024-0415

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 11, 2024
Updated: May 17, 2024
CWE ID 284

Summary

CVE-2024-0415 is a critical vulnerability affecting DeShang DSMall up to version 6.1.0. This issue lies in the unknown functionality of the TaobaoExport.php file located in the Image URL Handler component. The manipulation of this functionality results in improper access controls, allowing remote attacks. The exploit for this vulnerability has been disclosed to the public, increasing the risk of its exploitation. The associated identifier for this vulnerability is VDB-250435.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share