CVE-2024-48937 | Znuny up to 6.5.1/6.5.10/7.0.1/7.0.16 Activity Dialogues SLA cross site scripting

Inserito da Angelo Barbosa | Ott 12, 2024 | CVE

A vulnerability was found in Znuny up to 6.5.1/6.5.10/7.0.1/7.0.16. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Activity Dialogues. The manipulation of the argument SLA leads to cross site scripting.

This vulnerability is known as CVE-2024-48937. The attack can be launched remotely. There is no exploit available.

CVE-2024-48937 | Znuny up to 6.5.1/6.5.10/7.0.1/7.0.16 Activity Dialogues SLA cross site scripting

Post correlati

CVE-2024-2912 | BentoML Framework up to 1.2.4 POST Request insecure default initialization of resource

CVE-2023-46929 | GPAC GPAC 2.3-DEV-rev605-gfc9e29089-master MP4Box av_parsers.c gf_avc_change_vui denial of service (Issue 2662)

CVE-2024-5628 | Avada Plugin up to 3.11.9 on WordPress Shortcode fusion_button cross site scripting

CVE-2024-2718 | Campcodes Complete Online DJ Booking System 1.0 booking-bwdates-reports-details.php fromdate cross site scripting