DevSecOps

winter/wn-cms-module - high issue in >=1.2.0,<1.2.7;>=1.1.0,<1.1.11;<1.0.476 - CVE-2024-54149

Description

Package winter/wn-cms-module which comes from package manager composer is found vulnerable with high severity, please avoid version >=1.2.0,<1.2.7;>=1.1.0,<1.1.11;<1.0.476 in order to mitigate.

Recommended Actions

Avoid using versions >=1.2.0,<1.2.7;>=1.1.0,<1.1.11;<1.0.476 for package winter/wn-cms-module

Coverage

FortiDevSec 25.1 or later

Version Updates

Date	Version	Status	Detail
2025-03-31	25.10000	New	None

ID	24862
CVE ID
CWE ID	CWE-184
OWASP	A03:2021
Package Source	composer
Affected Language	PHP
Date	Feb 16, 2024
Risk

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

DevSecOps

winter/wn-cms-module - high issue in >=1.2.0,<1.2.7;>=1.1.0,<1.1.11;<1.0.476 - CVE-2024-54149

Description

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

DevSecOps

winter/wn-cms-module - high issue in >=1.2.0,<1.2.7;>=1.1.0,<1.1.11;<1.0.476 - CVE-2024-54149

Description

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center