CVE-2025-24967 | yogeshojha rengine up to 2.2.0 username cross site scripting (GHSA-23wx-5q5w-334w)

Inserito da Angelo Barbosa | Feb 4, 2025 | CVE

A vulnerability was found in yogeshojha rengine up to 2.2.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument username leads to cross site scripting.

This vulnerability was named CVE-2025-24967. The attack can be initiated remotely. There is no exploit available.

CVE-2025-24967 | yogeshojha rengine up to 2.2.0 username cross site scripting (GHSA-23wx-5q5w-334w)

Post correlati

CVE-2024-34600 | Samsung Samsung Flow prior 4.9.13.0 External Storage intent by broadcast receiver

CVE-2023-48910 | Microcks up to 1.17.1 GET Request /jobs server-side request forgery

CVE-2024-52983 | Adobe Animate up to 23.0.8/24.0.5 integer overflow (apsb24-96)

CVE-2024-45550 | Qualcomm Snapdragon Compute FastConnect 6900 up to WSA8845 IOCTL Call array index