CVE-2024-57601 | Alex Tselegidis easyappointments 1.5.0 legal_settings cross site scripting

Inserito da Angelo Barbosa | Feb 12, 2025 | CVE

A vulnerability, which was classified as problematic, was found in Alex Tselegidis easyappointments 1.5.0. Affected is an unknown function. The manipulation of the argument legal_settings leads to cross site scripting.

This vulnerability is traded as CVE-2024-57601. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-57601 | Alex Tselegidis easyappointments 1.5.0 legal_settings cross site scripting

Post correlati

CVE-2024-37036 | Schneider Electric Sage 4400 up to C3414-500-S02K5_P8 POST Request out-of-bounds write (SEVD-2024-163-05)

CVE-2024-22290 | AboZain O7abeeb UnitOne Custom Dashboard Widgets Plugin up to 1.3.1 on WordPress cross-site request forgery

CVE-2021-46969 | Linux Kernel up to 5.12.2 mhi mhi_queue use after free (a99b661c3187/0ecc1c70dcd3)

CVE-2024-37382 | Ab Initio Metadata Hub and Authorization Gateway up to 4.3.1.0 Server Configuration improper authorization