Advisories

Publicly disclosed vulnerabilities discovered by Fluid Attacks Research Team.

Severity 4.4

Session 1.17.5 - LFR via chat attachment

CVE-2024-2045

Published: 2024-02-29 12:00 COT

Discovered by Carlos Bello

Severity 7.2

Loomio 2.22.1 - Code injection

CVE-2024-1297

Published: 2024-02-29 12:00 COT

Discovered by Carlos Bello

Severity 7.5

pyhtml2pdf 0.0.6 - Local File Read via Server Side XSS

CVE-2024-1647

Published: 2024-02-19 14:30 COT

Discovered by Carlos Bello

Severity 7.5

electron-pdf 20.0.0 - Local File Read via Server Side XSS

CVE-2024-1648

Published: 2024-02-19 12:00 COT

Discovered by Carlos Bello

Severity 5.3

Recipes 1.5.10 - Blind SSRF

CVE-2024-0403

Published: 2024-02-19 12:00 COT

Discovered by Carlos Bello

Severity 9.9

Suite CRM v7.14.2 - RCE via Local File Inclusion

CVE-2024-1644

Published: 2024-02-19 12:00 COT

Discovered by Carlos Bello

Severity 10

Torrentpier 2.4.1 - RCE

CVE-2024-1651

Published: 2024-02-19 12:00 COT

Discovered by Carlos Bello

Severity 5.8

Twister Antivirus v8.17 - Out-of-bounds Read

CVE-2024-1140

Published: 2024-02-06 12:00 COT

Discovered by Andres Roldan

Severity 5.5

Twister Antivirus v8.17 - Denial of Service

CVE-2024-1216

Published: 2024-02-06 12:00 COT

Discovered by Andres Roldan

For more information, you can read our Disclosure Policy

Fluid Logo Footer

Hacking software for over 20 years

Fluid Attacks tests applications and other systems, covering all software development stages. Our team assists clients in quickly identifying and managing vulnerabilities to reduce the risk of incidents and deploy secure technology.

Copyright © 0 Fluid Attacks. We hack your software. All rights reserved.