CVE-2024-29877 | Sentrifugo 3.2 edit expense_category_name cross site scripting

Inserito da Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability has been found in Sentrifugo 3.2 and classified as problematic. This vulnerability affects unknown code of the file /sentrifugo/index.php/expenses/expensecategories/edit. The manipulation of the argument expense_category_name leads to cross site scripting.

This vulnerability was named CVE-2024-29877. The attack can be initiated remotely. There is no exploit available.

CVE-2024-29877 | Sentrifugo 3.2 edit expense_category_name cross site scripting

Post correlati

CVE-2024-32819 | Culqi Plugin up to 3.0.14 on WordPress server-side request forgery

CVE-2024-5507 | Luxion KeyShot Viewer KSP File Parser stack-based overflow

CVE-2024-44202 | Apple iOS/iPadOS up to 17.7 Private Browsing Tab improper authentication

CVE-2023-46565 | osrg gobgp 419c50dfac578daa4d11256904d0dc182f1a9b22 pkg/server/fsm.go handlingError denial of service (Issue 2725)