CVE-2024-22492 | JFinalcms 5.0.0 /gusetbook/save contact cross site scripting

Inserito da Angelo Barbosa | Gen 12, 2024 | CVE

A vulnerability, which was classified as problematic, was found in JFinalcms 5.0.0. This affects an unknown part of the file /gusetbook/save. The manipulation of the argument contact leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-22492. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-22492 | JFinalcms 5.0.0 /gusetbook/save contact cross site scripting

Post correlati

CVE-2024-28960 | mbed TLS up to 2.28.7/3.5.x PSA Crypto API Privilege Escalation

CVE-2024-5979 | h2oai h2o-3 up to 3.46.0 run_tool MojoConvertTool resource consumption

CVE-2024-8356 | Visteon Infotainment VIP MCU Local Privilege Escalation (ZDI-24-1188)

CVE-2023-49528 | FFmpeg 6.1-3-g466799d4f5 de_stereo af_dialoguenhance.c denial of service (ID 10691)