CVEs-PoC/2024/CVE-2024-7297.md at ae7c8ffaeab2dbdfe8daabfe5c8c852b33cc867f

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-06-02 03:41:53 +02:00

Files

T

0xMarcio 3428c6bdc6 Update CVE sources 2024-08-05 18:41

2024-08-05 18:41:32 +00:00

Description

Langflow versions prior to 1.0.13 suffer from a Privilege Escalation vulnerability, allowing a remote and low privileged attacker to gain super admin privileges by performing a mass assignment request on the '/api/v1/users' endpoint.

POC

Reference

https://www.tenable.com/security/research/tra-2024-26

Github

https://github.com/JoshuaMart/JoshuaMart

784 B Raw Blame History

CVE-2024-7297

Description

POC

Reference

Github

784 B

Raw Blame History