MocodoCVEs & Vulnerabilities
2 CVEs affecting Mocodo products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
2 CVEs→ All vendors
Most Affected Products
mocodo online 2
CVE-2024-35374CRITICAL
Mocodo Mocodo Online 4.2.6 and below does not properly sanitize the sql_case input field in /web/generate.php, allowing remote attackers to execute arbitrary commands and potentially command injection, leading to remote code execution (RCE) under certain conditions.
25 May 2024
9.8
CVSS
CVE-2024-35373CRITICAL
Mocodo Mocodo Online 4.2.6 and below is vulnerable to Remote Code Execution via /web/rewrite.php.
25 May 2024
9.8
CVSS
← PrevPage 1 / 1Next →