CVE-2024-28095 | Schoolbox up to 23.1.2 News cross site scripting

Inserito da Angelo Barbosa | Mar 7, 2024 | CVE

A vulnerability was found in Schoolbox up to 23.1.2. It has been classified as problematic. Affected is an unknown function of the component News. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-28095. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28095 | Schoolbox up to 23.1.2 News cross site scripting

Post correlati

CVE-2024-5384 | SourceCodester Facebook News Feed Like 1.0 index.php page sql injection

CVE-2024-28755 | mbed TLS up to 3.5.x API mbedtls_ssl_session_reset inadequate encryption

CVE-2024-26941 | Linux Kernel up to 6.8.2/6.9-rc1 on DP drm divide by zero (828862071a6c/9cbd1dae8427)

CVE-2024-29455 | ROS2 Humble Hawksbill unrestricted upload