CVE-2024-56799 – Simofa Unauthenticated API Route Disclosure

12月 30, 2024
8:16 pm

CVE ID : CVE-2024-56799

Published : Dec. 30, 2024, 7:15 p.m. | 1 hour, 1 minute ago

Description : Simofa is a tool to help automate static website building and deployment. Prior to version 0.2.7, due to a design mistake in the RouteLoader class, some API routes may be publicly accessible when they should require authentication. This vulnerability has been patched in v0.2.7.

Severity: 10.0 | CRITICAL

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-56799 – Simofa Unauthenticated API Route Disclosure

Elvescore.io

Recent Posts

CVE-2022-41995 – Galleryape Gallery Missing Authorization Vulnerability

CVE-2022-43476 – Subscribe to Category Missing Authorization

CVE-2022-45830 – Analytify Authentication Bypass

CVE-2022-49035 – Linux kernel S5P CEC Out-of-Bounds Write Vulnerability

CVE-2023-32240 – Xtemos WoodMart Missing Authorization Vulnerability

CVE-2023-39994 – Repute InfoSystems ARMember Premium Missing Authorization Vulnerability

CVE-2024-56799 – Simofa Unauthenticated API Route Disclosure

CVE-2024-56799 – Simofa Unauthenticated API Route Disclosure