24Oca
CVE-2023-24676 | Processwire 3.0.210 New Module Installation download_zip_url Privilege Escalation
A vulnerability, which was classified as critical, was found in Processwire 3.0.210. Affected is an unknown function of the component New Module Installation. The manipulation of the argument download_zip_url leads to Privilege Escalation. This vulnerability is traded as CVE-2023-24676. Access to the local network is required for this attack. There is no exploit available.