Chatwoot Pre-Account Takeover via OAuth on Unconfirmed Accounts (CVE-2024-44707)

github.com 2026-05-27查看中文 →

Security AdvisoryCVE-2024-44707HighChatwoot

Affected:

Chatwoot >= 2.14.0

Fixed in:

4.13.0

Referenced CVEs: CVE-2026-44707 · 6.8

文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive

This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.

More from this source

SQL Injection Vulnerability and POC in Hospital Patient Records Management System V1.0 2026-05-31 Pre-Auth SQL Injection in Hospital Management System patient.php 2026-05-31 SQLi in Hospital's Patient Records Management System V1.0 via /classes/Users.php 2026-05-31 TRENDnet TEW-432BRP Router RCE Vulnerability Advisory with POC 2026-05-31 TRENDnet TEW-432BRP Stack Overflow Vulnerability and POC 2026-05-31

Offline Archive

Offline screenshot & PDF are Pro-exclusive