CVE-2024-12503 | ClassCMS 4.8 Model Management Page /index.php/admin URL cross site scripting

Inserito da Angelo Barbosa | Dic 11, 2024 | CVE

A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Model Management Page. The manipulation of the argument URL leads to cross site scripting.

This vulnerability is known as CVE-2024-12503. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-12503 | ClassCMS 4.8 Model Management Page /index.php/admin URL cross site scripting

Post correlati

CVE-2024-38305 | Dell SupportAssist for Home PCs 4.0.3 untrusted search path (dsa-2024-312)

CVE-2024-34068 | Pterodactyl Wings up to 1.11.11 api.disable_remote_download access control

CVE-2023-6181 | Google Android BCB Privilege Escalation

CVE-2024-22099 | Linux Kernel up to 6.7 core.C null pointer dereference