CVE-2024-11145

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 26, 2024
CWE ID 502

Summary

CVE-2024-11145 is a deserialization vulnerability affecting Valor Apps Easy Folder Listing Pro for Joomla!. An unauthenticated, remote attacker can exploit this flaw to execute arbitrary code with the privileges of the Joomla! application. This poses a significant risk, as the attacker does not need to have any prior authentication or authorization to carry out the exploit. The vulnerability has been resolved in versions 3.8 and 4.5 of the software.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share