CVE-2023-36236 | Webkil Bagisto up to 1.5.0 SVG File Upload cross site scripting

Inserito da Angelo Barbosa | Gen 17, 2024 | CVE

A vulnerability classified as problematic was found in Webkil Bagisto up to 1.5.0. This vulnerability affects unknown code of the component SVG File Upload. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2023-36236. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2023-36236 | Webkil Bagisto up to 1.5.0 SVG File Upload cross site scripting

Post correlati

CVE-2024-22436 | HPE IceWall Gen11/IceWall SSO Agent denial of service

CVE-2023-51665 | advplyr audiobookshelf up to 2.6.x Auth.js server-side request forgery

CVE-2024-1125 | EventPrime Plugin up to 3.4.3 on WordPress Post authorization

CVE-2023-39050: Daiky-value.Fukueten Messages information disclosure