CVE-2023-49279 | Umbraco CMS up to 7.15.10/8.18.8/10.6.x/11.4.x/12.1.x SVG File cross site scripting (GHSA-6xmx-85×3-4cv2)

Inserito da Angelo Barbosa | Dic 12, 2023 | CVE

A vulnerability was found in Umbraco CMS up to 7.15.10/8.18.8/10.6.x/11.4.x/12.1.x and classified as problematic. This issue affects some unknown processing of the component SVG File Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2023-49279. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49279 | Umbraco CMS up to 7.15.10/8.18.8/10.6.x/11.4.x/12.1.x SVG File cross site scripting (GHSA-6xmx-85×3-4cv2)

Post correlati

CVE-2024-6608 | Mozilla Firefox up to 127.x IFRAME unknown vulnerability

CVE-2024-29135 | Tourfic Plugin up to 2.11.15 on WordPress unrestricted upload

CVE-2023-34444 | Combodo iTop up to 2.7.8/3.0.3 ajax.searchform.php cross site scripting (GHSA-rwx9-rcxf-qrwv)

CVE-2024-27042 | Linux Kernel up to 6.6.22/6.7.10/6.8.1 amdgpu_discovery_reg_base_init out-of-bounds