CVE-2023-52274 | yzmcms up to 7.0 HTTP Header register.html Referer cross site scripting (Issue 65)

Inserito da Angelo Barbosa | Gen 11, 2024 | CVE

A vulnerability was found in yzmcms up to 7.0. It has been classified as problematic. This affects an unknown part of the file member/index/register.html of the component HTTP Header Handler. The manipulation of the argument Referer leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2023-52274. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2023-52274 | yzmcms up to 7.0 HTTP Header register.html Referer cross site scripting (Issue 65)

Post correlati

CVE-2023-49695 | Elecom WRC-X3000GSN/WRC-X3000GS/WRC-X3000GSA Request os command injection

CVE-2024-0553 | GnuTLS up to 3.8.2 RSA-PSK ClientKeyExchange information exposure

CVE-2024-38886 | Horizon Business Services Caterease up to 24.0.1.2405 TCP Traffic verification of source

CVE-2024-2557 | kishor-23 Food Waste Management System 1.0 /admin/admin.php improper authorization