CVE-2024-25107 | miraheze WikiDiscover Special:WikiDiscover Language::date cross site scripting (GHSA-cfcf-94jv-455f)

Inserito da Angelo Barbosa | Feb 9, 2024 | CVE

A vulnerability was found in miraheze WikiDiscover and classified as problematic. Affected by this issue is the function Language::date of the file Special:WikiDiscover. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-25107. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-25107 | miraheze WikiDiscover Special:WikiDiscover Language::date cross site scripting (GHSA-cfcf-94jv-455f)

Post correlati

CVE-2024-4683 | Campcodes Complete Web-Based School Management System 1.0 exam_timetable_insert_form.php exam cross site scripting

CVE-2024-33377 | LB-LINK BL-W1210M 2.0 Elements clickjacking

CVE-2024-30545 | Nick Powers Social Author Bio Plugin up to 2.4 on WordPress cross-site request forgery

CVE-2024-28200 | N-able N-central 2023.4/2023.6 User Interface authentication bypass