CVE-2024-11625

High CVSS 7.7

Overview

Information Exposure Through an Error Message vulnerability in Progress Software Corporation Sitefinity.This issue affects Sitefinity: from 4.0 through 14.4.8142, from 15.0.8200 through 15.0.8229, from 15.1.8300 through 15.1.8327, from 15.2.8400 through 15.2.8421.

CWE: CWE-209 Published: 2025-01-07T08:15:24.447

Risk analysis

This vulnerability is rated 🟠 HIGH.

CVSS: 7.7 (HIGH)
Detected tags: info_leak (tag impact: LOW)

Recommended actions:

Reduce verbose errors, remove debug endpoints, minimize PII in logs.

Overview

Recommended tools

Tags