Vulnerability CVE-2024-40530
Published: 2024-08-05

Description:
Insecure Permissions vulnerability in UAB Lexita PanteraCRM CMS v.401.152 and Patera CRM CMS v.402.072 allows a remote attacker to execute arbitrary code via modification of the X-Forwarded-For header component.

 References:
https://critical.lt/blog/authorization-bypass-and-mass-assignment-in-pantera-crm/
Copyright 2026, cxsecurity.com

 

Back to Top