CVE-2024-39094 | Friendica 2024.03 Setting homepage/xmpp/matrix cross site scripting

Inserito da Angelo Barbosa | Ago 20, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Friendica 2024.03. Affected by this issue is some unknown functionality of the component Setting Handler. The manipulation of the argument homepage/xmpp/matrix leads to cross site scripting.

This vulnerability is handled as CVE-2024-39094. The attack may be launched remotely. There is no exploit available.

CVE-2024-39094 | Friendica 2024.03 Setting homepage/xmpp/matrix cross site scripting

Post correlati

CVE-2023-52211 | Automattic WP Job Manager Plugin up to 2.0.0 on WordPress authorization

CVE-2024-1482 | GitHub Enterprise Server prior 3.9.9/3.10.6/3.11.4 authorization

CVE-2024-0655 | Novel-Plus 4.3.0-RC1 /novel/bookSetting/list sort sql injection

CVE-2024-21910 | TinyMCE up to 5.9.x Link cross site scripting (ID 366)