CVE-2023-49279 | Umbraco CMS up to 7.15.10/8.18.8/10.6.x/11.4.x/12.1.x SVG File cross site scripting (GHSA-6xmx-85×3-4cv2)

Inserito da Angelo Barbosa | Dic 12, 2023 | CVE

A vulnerability was found in Umbraco CMS up to 7.15.10/8.18.8/10.6.x/11.4.x/12.1.x and classified as problematic. This issue affects some unknown processing of the component SVG File Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2023-49279. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49279 | Umbraco CMS up to 7.15.10/8.18.8/10.6.x/11.4.x/12.1.x SVG File cross site scripting (GHSA-6xmx-85×3-4cv2)

Post correlati

CVE-2024-10146 | Mitchell Bennis Simple File List Plugin up to 6.1.12 on WordPress Attribute cross site scripting

CVE-2024-3609 | ReviewX Plugin up to 1.6.27 on WordPress authorization

CVE-2024-37000 | Autodesk AutoCAD X_T File Parser out-of-bounds write

CVE-2024-49280 | Weblizar Lightbox Slider Plugin up to 1.10.0 on WordPress cross site scripting