CVE-2024-13268

MEDIUM Year: 2024
CVSS v3 Score
6.8
Medium
Weakness Type
CWE-96
View all →

Vulnerability Description

Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno allows PHP Local File Inclusion.This issue affects Opigno: from 7.X-1.0 before 7.X-1.23.

Related Vulnerabilities

CVE-2021-39115

HIGH
CVSS:7.2(High)

Affected versions of Atlassian Jira Service Management Server and Data Center allow remote attackers with "Jira Administrators" access to execute arbitrary Java code or run arbitrary system commands v...

CWE-962021

CVE-2022-3960

MEDIUM
CVSS:6.3(Medium)

Hitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.1 and 9.3.0.2, including 8.3.x cannot allow a system administrator to disable scripting capabilities of the Community Dashboar...

CWE-962022

CVE-2024-13265

HIGH
CVSS:7.5(High)

Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno Learning path allows PHP Local File Inclusion.This issue affects Opigno Learning...

CWE-962024

CVE-2024-13267

HIGH
CVSS:7.5(High)

Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') vulnerability in Drupal Opigno TinCan Question Type allows PHP Local File Inclusion.This issue affects Opigno T...

CWE-962024

CVE-2022-0895

HIGH
CVSS:7.7(High)

Static Code Injection in GitHub repository microweber/microweber prior to 1.3.

CWE-962022

CVE-2024-0788

MEDIUM
CVSS:5.5(Medium)

SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API parameters manipulation and Denial of Service vulnerabilities by triggering the 0x9C402140 IOCTL code of the saskutil64.sys driver.

CWE-962024