What is CVE-2024-53376?

CVE-2024-53376 is a vulnerability in N/a. Published 2024-12-16.

Is CVE-2024-53376 known to be exploited?

17 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2024-53376

CyberPanel before 2.3.8 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the phpSelection field to the websites/submitWebsiteCreation URI.

EPSS: 0.912 (99.7th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ThottySploity/CVE-2024-53376
20142995/nuclei-templates
ARPSyndicate/cve-scores
DMW11525708/wiki
Lern0n/Lernon-POC
Threekiii/CVE
adysec/POC
cyb3r-w0lf/nuclei-template-collection
12442RF/POC
greenberglinken/2023hvv_

References

github.com/ThottySploity/CVE-2024-53376
thottysploity.github.io/posts/cve-2024-53376
github.com/ThottySploity/CVE-2024-53376/blob/aa306187323bd1127d56803cb34cac8820…

Frequently asked questions

What is CVE-2024-53376?: CVE-2024-53376 is a vulnerability in N/a. Published 2024-12-16.
Is CVE-2024-53376 known to be exploited?: 17 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.