Skip to main content

Loomio

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2024-1297 HIGH POC This Week

OS command injection in Loomio 2.22.0 allows authenticated high-privilege users to execute arbitrary operating system commands on the underlying server. Publicly available exploit code exists, though there is no public exploit identified as actively used in the wild and the issue is not listed in CISA KEV. EPSS sits at 1.51% (81st percentile), indicating moderate but non-trivial exploitation likelihood.

Command Injection Loomio
NVD GitHub
CVSS 3.1
7.2
EPSS
1.5%
CVE-2024-1297
EPSS 2% CVSS 7.2
HIGH POC This Week

OS command injection in Loomio 2.22.0 allows authenticated high-privilege users to execute arbitrary operating system commands on the underlying server. Publicly available exploit code exists, though there is no public exploit identified as actively used in the wild and the issue is not listed in CISA KEV. EPSS sits at 1.51% (81st percentile), indicating moderate but non-trivial exploitation likelihood.

Command Injection Loomio
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy