CVE-2024-1032 – openBI Test Connection Databasesource.php testConnection deserialization

https://notcve.org/view.php?id=CVE-2024-1032

A vulnerability classified as critical was found in openBI up to 1.0.8. Affected by this vulnerability is the function testConnection of the file /application/index/controller/Databasesource.php of the component Test Connection Handler. The manipulation leads to deserialization. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://note.zhaoj.in/share/6ISYe2urjlkI https://vuldb.com/?ctiid.252307 https://vuldb.com/?id.252307 • CWE-502: Deserialization of Untrusted Data •