CVE-2024-0776 | LinZhaoguan pb-cms 2.0 Comment cross site scripting

Inserito da Angelo Barbosa | Gen 21, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in LinZhaoguan pb-cms 2.0. Affected by this issue is some unknown functionality of the component Comment Handler. The manipulation with the input <div onmouseenter="alert("xss)"> leads to cross site scripting.

This vulnerability is handled as CVE-2024-0776. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0776 | LinZhaoguan pb-cms 2.0 Comment cross site scripting

Post correlati

CVE-2024-44191 | Apple watchOS Bluetooth improper authorization

CVE-2024-30191 | Siemens SCALANCE WUM766-1 authentication spoofing (ssa-457702)

CVE-2024-10397 | OpenAFS up to 1.6.24/1.8.12.2/1.9.1 out-of-bounds write

CVE-2024-52565 | Siemens Tecnomatix Plant Simulation prior 2302.0018/2404.0007 WRL File out-of-bounds write (ssa-824503)