CVE-2024-26495 | Friendica 2023.12 BBCode Tag cross site scripting (Issue 13884)

Inserito da Angelo Barbosa | Apr 3, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Friendica 2023.12. Affected is an unknown function of the component BBCode Tag Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-26495. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-26495 | Friendica 2023.12 BBCode Tag cross site scripting (Issue 13884)

Post correlati

CVE-2024-46820 | Linux Kernel up to 6.10.8 AMD Display amdgpu_irq_put state issue (aa92264ba6fd/10fe1a79cd1b)

CVE-2024-43251 | Bit Apps Bit Form Pro Plugin up to 2.6.4 on WordPress information disclosure

CVE-2024-10367 | Otter Blocks Plugin up to 3.0.4 on WordPress SVG File Upload cross site scripting

CVE-2024-4141 | Xpdf up to 4.04 Type 1 Font out-of-bounds write