Alireza Gharib Blog

CVE-2024-9132 – “FortiOS Path Traversal”

CVE ID : CVE-2024-9132

Published : Jan. 10, 2025, 10:15 p.m. | 1 day, 17 hours ago

Description : The administrator is able to configure an insecure captive portal script

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Go to Source

Tags: #cve, #cybersecurity, #security, 02

Related Posts

Week in review: Exploited Ivanti Connect Secure zero-day, Patch Tuesday forecast Threat Actors Exploit a Critical Ivanti RCE Bug, Again TheCyberThrone Security Weekly Review – January 11, 2025 Reversing, Discovering, And Exploiting A TP-Link Router Vulnerability — CVE-2024–54887 Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled Fake LDAPNightmware exploit on GitHub spreads infostealer malware CVE-2025-23128 – CVE-2022-47713: VMware VMware Workstation – Inadequate Bounds Checking CVE-2025-23127 – Here is the title: Android Permissions Denial of Service CVE-2025-23126 – CVE-2021-36344: Apache Struts Code Injection Vulnerability CVE-2025-23124 – CVE-2022-4792: Dell EMC NetWorker Authentication Bypass Vulnerability CVE-2025-22777 (CVSS 9.8): Critical Security Alert for GiveWP Plugin with 100,000 Active Installations CVE-2025-22598 – WeGIA Cadastral Stored Cross-Site Scripting (XSS) Vulnerability CVE-2025-22597 – WeGIA Stored Cross-Site Scripting (XSS) Vulnerability CVE-2025-0398 – Longpi1 Warehouse Cross Site Scripting in Backend CVE-2025-0397 – Reckn SPPanAdmin Cross-Site Scripting (XSS) CVE-2025-0396 – Exelban Stats XPC Service Command Injection Vulnerability CVE-2024-9188 – Oracle WebLogic SQL Injection Vulnerability CVE-2024-9134 – Apache Reporting SQL Injection Privilege Escalation Vulnerability CVE-2024-57880 – Intel ASoC SOF SDW Array Index Out-of-Bounds Vulnerability CVE-2024-57879 – Qualcomm Bluetooth Linux Module – Resource Leaking Vulnerability
, , , ,
, , ,
Recent Posts