Vulnerability Database

296,147

Total vulnerabilities in the database

CVE-2024-41344

A Cross-Site Request Forgery (CSRF) in Codeigniter 3.1.13 allows attackers to arbitrarily change the Administrator password and escalate privileges.

Published: Oct 15, 2024
Updated: Aug 2, 2025
CVE: CVE-2024-41344
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
codeigniter / codeigniter	3.1.13	3.1.13.x

https://github.com/kirilkirkov/Ecommerce-CodeIgniter-Bootstrap/issues/264