CVE-2024-55500

Published December 10th, 2024

View on NVD ↗

CVSS v3

8.8

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Cross-Site Request Forgery (CSRF) in Avenwu Whistle v.2.9.90 and before allows attackers to perform malicious API calls, resulting in the execution of arbitrary code on the victim's machine.

avwo/whistle

HTTP, HTTP2, HTTPS, Websocket debugging proxy

GitHub

15.5K