CVE-2024-25369 | Fuel CMS 1.5.2allow String group_id cross site scripting

Inserito da Angelo Barbosa | Feb 22, 2024 | CVE

A vulnerability was found in Fuel CMS 1.5.2allow and classified as problematic. This issue affects some unknown processing of the component String Handler. The manipulation of the argument group_id leads to cross site scripting.

The identification of this vulnerability is CVE-2024-25369. The attack may be initiated remotely. There is no exploit available.

CVE-2024-25369 | Fuel CMS 1.5.2allow String group_id cross site scripting

Post correlati

CVE-2023-42503 | Oracle Utilities Network Management System 2.6.0.1 NMS Monitor denial of service

CVE-2024-2433 | Palo Alto PAN-OS up to 9.0.17-h3/9.1.16/10.1.11/10.2.7/11.0.2 Web Interface privileges management

CVE-2024-28662 | Piwigo up to 14.2.x functions.php create_tag cross site scripting (GHSA-8g2g-6f2c-6h7j)

CVE-2024-3148 | DedeCMS 5.7.112 makehtml_archives_action.php sql injection