CVE-2024-2299 | parisneo lollms-webui Profile Picture cross site scripting

Inserito da Angelo Barbosa | Mag 13, 2024 | CVE

A vulnerability was found in parisneo lollms-webui. It has been rated as problematic. This issue affects some unknown processing of the component Profile Picture Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-2299. The attack may be initiated remotely. There is no exploit available.

CVE-2024-2299 | parisneo lollms-webui Profile Picture cross site scripting

Post correlati

CVE-2024-22211 | FreeRDP up to 2.11.4/3.1.x planar.c freerdp_bitmap_planar_context_reset heap-based overflow (GHSA-rjhp-44rv-7v59)

CVE-2024-1174 | HP ThinPro up to 8.0 SP7 Privilege Escalation

CVE-2024-6911 | PerkinElmer ProcessPlus up to 1.11.6507.0 on Windows file access

CVE-2024-2659 | Lenovo SMM/SMM2/FPC os command injection