Join THREATCON1 in Reston, VA - September 21-22, 2025.
Register for Free
Products
Government
Resources
Community
Company
Partners
Sign In / Join
Sign In
Advisories
ProjectSend Unauthenticated Configuration Modification
Go Back
severity
critical
date
November 25, 2024
Affecting
ProjectSend before r1720
CVE
CVE-2024-11680
CVE type
Improper Authorization
CVSS
9.8
CVSS V3 Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References
Exploit
Exploit
Patch
VulnCheck KEV
This advisory is in the VulnCheck KEV database