• caglararli@hotmail.com
  • 05386281520

CVE-2024-34361 | pi-hole up to 5.18.2 gravity_DownloadBlocklistFromUrl server-side request forgery (GHSA-jg6g-rrj6-xfg6)

Çağlar Arlı      -    2 Views

CVE-2024-34361 | pi-hole up to 5.18.2 gravity_DownloadBlocklistFromUrl server-side request forgery (GHSA-jg6g-rrj6-xfg6)

A vulnerability, which was classified as critical, has been found in pi-hole up to 5.18.2. Affected by this issue is the function gravity_DownloadBlocklistFromUrl. The manipulation leads to server-side request forgery. This vulnerability is handled as CVE-2024-34361. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.