Vulnerability Database

309,134

Total vulnerabilities in the database

CVE-2024-41811

ipl/web is a set of common web components for php projects. Some of the recent development by Icinga is, under certain circumstances, susceptible to cross site request forgery. (CSRF). All affected products, in any version, will be unaffected by this once icinga-php-library is upgraded. Version 0.10.1 includes a fix for this. It will be published as part of the icinga-php-library v0.14.1 release.

Published: Aug 5, 2024
Updated: Nov 16, 2025
CVE: CVE-2024-41811
GHSA: GHSA-w9pg-7c3h-fc8j
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 3.9
AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:L/A:L

CWEs:

CWE-352

Affected Software
References

Software	From	Fixed in
ipl / web	-	0.10.1

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo