Palo Alto Expedition versions before 1.2.96 suffer from multiple vulnerabilities: – An unauthenticated OS command Injection vulnerability through the /API/convertCSVtoParquet.php endpoint (CVE-2024-9264) – An authenticated OS command injection vulnerability (CVE-2024-9464) – An unauthenticated SQL Injection vulnerability through the CHECKPOINT.php endpoint (CVE-2024-9465) – A cleartext storage of sensitive information vulnerability (CVE-2024-9466) – A reflected Cross-Site Scripting vulnerability…Read More