CVE-2024-22855 | ITSS iMLog 1.307 User Maintenance Section Last Name cross site scripting (Exploit 52025 / EDB-52025)

Inserito da Angelo Barbosa | Giu 12, 2024 | CVE

A vulnerability was found in ITSS iMLog 1.307. It has been declared as problematic. This vulnerability affects unknown code of the component User Maintenance Section. The manipulation of the argument Last Name leads to cross site scripting.

This vulnerability was named CVE-2024-22855. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-22855 | ITSS iMLog 1.307 User Maintenance Section Last Name cross site scripting (Exploit 52025 / EDB-52025)

Post correlati

CVE-2024-2468 | EmbedPress Plugin up to 3.9.12 on WordPress Widget Attribute cross site scripting

CVE-2024-24922 | Siemens Simcenter Femap prior 2401.0000 Catia Model File out-of-bounds write (ssa-000072)

CVE-2024-43149 | CreativeMindsSolutions CM Tooltip Glossary Plugin up to 4.3.7 on WordPress cross site scripting

CVE-2024-49406 | Samsung Blockchain Keystore up to 1.3.15 integrity check