CVE-2024-26495 | Friendica 2023.12 BBCode Tag cross site scripting (Issue 13884)

Inserito da Angelo Barbosa | Apr 3, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Friendica 2023.12. Affected is an unknown function of the component BBCode Tag Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-26495. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-26495 | Friendica 2023.12 BBCode Tag cross site scripting (Issue 13884)

Post correlati

CVE-2024-20808 | Samsung Mobile Nearby Device Scanning prior 11.1.14.7 access control

CVE-2024-48539 | Neye3C 4.5.2.0 Firmware Update hard-coded key

CVE-2024-22398 | SonicWall Email Security Appliance up to 10.0.26.7807 path traversal (WLID-2024-0006)

CVE-2024-41305 | WonderCMS 3.4.3 Plugins Page pluginThemeUrl server-side request forgery