CVE-2024-26450 | Piwigo up to 14.1.x Admin Page batch cross site scripting (GHSA-p362-cfpj-q55f)

Inserito da Angelo Barbosa | Feb 29, 2024 | CVE

A vulnerability classified as problematic was found in Piwigo up to 14.1.x. This vulnerability affects the function batch of the component Admin Page. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-26450. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26450 | Piwigo up to 14.1.x Admin Page batch cross site scripting (GHSA-p362-cfpj-q55f)

Post correlati

CVE-2023-50710 | honojs hono up to 3.11.6 path code injection

CVE-2024-20488 | Cisco Unified Communications Manager up to 15 Web-based Management Interface cross site scripting (cisco-sa-cucm-xss-9zmfHyZ)

CVE-2024-5246 | Netgear ProSAFE Network Management System Tomcat Privilege Escalation

CVE-2024-32447 | AWP Classifieds Plugin up to 4.3.1 on WordPress cross-site request forgery