CVE-2024-27278 | OpenPNE opTimelinePlugin up to 1.2.11 Profile Configuration cross site scripting

Inserito da Angelo Barbosa | Mar 6, 2024 | CVE

A vulnerability was found in OpenPNE opTimelinePlugin up to 1.2.11. It has been rated as problematic. This issue affects some unknown processing of the component Profile Configuration. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-27278. The attack may be initiated remotely. There is no exploit available.

CVE-2024-27278 | OpenPNE opTimelinePlugin up to 1.2.11 Profile Configuration cross site scripting

Post correlati

CVE-2024-28795 | IBM InfoSphere Information Server 11.7 Web UI cross site scripting (XFDB-286832)

CVE-2024-29186 | brefphp bref up to 2.1.16 parseHeaderContent resource consumption (GHSA-j4hq-f63x-f39r)

CVE-2024-38078 | Microsoft Windows 11 21H2/11 22H2/11 23H2 Xbox Wireless Adapter use after free

CVE-2024-1426 | bdthemes Element Pack Elementor Addons Plugin up to 5.6.0 on WordPress Price List Widget link cross site scripting