TrueWinter

1 exploit Active since Dec 2024
CVE-2024-56799 WRITEUP CRITICAL WRITEUP
TrueWinter simofa < 0.2.7 - Unauthenticated Access to Restricted API Routes
Simofa is a tool to help automate static website building and deployment. Prior to version 0.2.7, due to a design mistake in the RouteLoader class, some API routes may be publicly accessible when they should require authentication. This vulnerability has been patched in v0.2.7.
CVSS 10.0