CVE-2024-27095 | Decidim up to 0.27.5/0.28.0 Record cross site scripting (GHSA-529p-jj47-w3m3)

Inserito da Angelo Barbosa | Lug 10, 2024 | CVE

A vulnerability was found in Decidim up to 0.27.5/0.28.0 and classified as problematic. This issue affects some unknown processing of the component Record Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-27095. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27095 | Decidim up to 0.27.5/0.28.0 Record cross site scripting (GHSA-529p-jj47-w3m3)

Post correlati

CVE-2023-42954 | Claris FileMaker Server up to 20.3.0 Admin Console information disclosure

CVE-2024-5062 | zenml-io zenml up to 0.57.x Survey cross site scripting

CVE-2024-0632 | juangirini Automatic Translator with Google Translate Plugin up to 1.5.4 on WordPress Custom Font Setting cross site scripting

CVE-2024-7352 | PDF-XChange Editor prior 10.3.0.386 PDF File Parser out-of-bounds write (ZDI-24-1037)