CVE-2024-13140 | Emlog Pro up to 2.4.3 Cover Upload article.php?action=upload_cover image cross site scripting

Inserito da Angelo Barbosa | Gen 4, 2025 | CVE

A vulnerability classified as problematic has been found in Emlog Pro up to 2.4.3. Affected is an unknown function of the file /admin/article.php?action=upload_cover of the component Cover Upload Handler. The manipulation of the argument image leads to cross site scripting.

This vulnerability is traded as CVE-2024-13140. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-13140 | Emlog Pro up to 2.4.3 Cover Upload article.php?action=upload_cover image cross site scripting

Post correlati

CVE-2023-50732 | XWiki xwiki-platform-index-tree-macro authorization

CVE-2024-39704 | Soft Circle French-Bread Melty Blood up to 1.4.0 Service Port 46318 Privilege Escalation

CVE-2024-3545 | Devolutions Server/Remote Desktop Manager Vault Offline Cache information disclosure (DEVO-2024-0006)

CVE-2024-0727 | OpenSSL 3.0/3.1 ContentInfo null pointer dereference