CVE-2024-45406 | Craft CMS up to 5.1.1 breadcrumb list/title cross site scripting (GHSA-28h4-788g-rh42)

Inserito da Angelo Barbosa | Set 9, 2024 | CVE

A vulnerability classified as problematic has been found in Craft CMS up to 5.1.1. This affects an unknown part. The manipulation of the argument breadcrumb list/title leads to basic cross site scripting.

This vulnerability is uniquely identified as CVE-2024-45406. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45406 | Craft CMS up to 5.1.1 breadcrumb list/title cross site scripting (GHSA-28h4-788g-rh42)

Post correlati

CVE-2024-35333 | html2xhtml 1.3 read_charset_decl stack-based overflow

CVE-2024-32327 | Totolink N300RT 2.1.8-B20201030.1539 Firewall Page cross site scripting

CVE-2023-51656 | Apache IoTDB up to 0.13.4 deserialization

CVE-2024-31278 | Leap13 Premium Addons for Elementor Plugin up to 4.10.22 on WordPress information disclosure