CVE-2024-13136 – Wangl1989 Mysiteforme Remote Deserialization Vulnerability

1月 5, 2025
10:16 am

CVE ID : CVE-2024-13136

Published : Jan. 5, 2025, 9:15 a.m. | 1 hour, 1 minute ago

Description : A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by this issue is the function rememberMeManager of the file src/main/java/com/mysiteforme/admin/config/ShiroConfig.java. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13136 – Wangl1989 Mysiteforme Remote Deserialization Vulnerability

Elvescore.io

Recent Posts

CVE-2025-22320 – ProductDyno Cross-Site Scripting Vulnerability

CVE-2025-22321 – Elementor ElementsCSS Stored Cross-Site Scripting (XSS)

CVE-2025-22323 – Elementor Jewel Theme XSS

CVE-2025-22324 – OZ Canonical Cross-site Scripting (XSS)

CVE-2025-22325 – Nik Chankov Autocompleter CSRF XSS

CVE-2025-22326 – 5centsCDN Cross-Site Scripting Vulnerability

CVE-2024-13136 – Wangl1989 Mysiteforme Remote Deserialization Vulnerability

CVE-2024-13136 – Wangl1989 Mysiteforme Remote Deserialization Vulnerability