CVE-2024-11145
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Nov 26, 2024
CWE ID 502
Summary
CVE-2024-11145 is a deserialization vulnerability affecting Valor Apps Easy Folder Listing Pro for Joomla!. An unauthenticated, remote attacker can exploit this flaw to execute arbitrary code with the privileges of the Joomla! application. This poses a significant risk, as the attacker does not need to have any prior authentication or authorization to carry out the exploit. The vulnerability has been resolved in versions 3.8 and 4.5 of the software.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share