CVE-2024-11587 | idcCMS 1.60 /inc/classProvCity.php GetCityOptionJs idName cross site scripting

Inserito da Angelo Barbosa | Nov 21, 2024 | CVE

A vulnerability was found in idcCMS 1.60. It has been classified as problematic. This affects the function GetCityOptionJs of the file /inc/classProvCity.php. The manipulation of the argument idName leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-11587. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-11587 | idcCMS 1.60 /inc/classProvCity.php GetCityOptionJs idName cross site scripting

Post correlati

CVE-2024-0607 | Linux Kernel up to 6.7-rc1 Netfilter nft_byteorder.c nft_byteorder_eval memory corruption

CVE-2023-48130 | GINZA CAFE mini-app on Line 13.6.1 Channel Access Token information disclosure

CVE-2024-30107 | HCL Connections 7.0/8.0 information disclosure (KB0112489)

CVE-2023-21634 | Qualcomm 835 Mobile PC Platform Radio Interface Layer memory corruption