CVE-2024-28715 | DoraCMS up to 2.18 markdown.jsx markdown0 cross site scripting

Inserito da Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability was found in DoraCMS up to 2.18 and classified as problematic. Affected by this issue is the function markdown0 of the file /app/public/apidoc/oas3/wrap-components/markdown.jsx. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-28715. The attack may be launched remotely. There is no exploit available.

CVE-2024-28715 | DoraCMS up to 2.18 markdown.jsx markdown0 cross site scripting

Post correlati

CVE-2023-51535 | СleanTalk Anti-Spam Protection Spam protection, Anti-Spam, FireWall Plugin cross-site request forgery

CVE-2024-3313 | Subnet Solutions PowerSYSTEM Server/Substation Server 2021 reliance on uncontrolled component (icsa-24-100-01)

CVE-2023-42878 | Apple watchOS App access control

CVE-2024-1000 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setTracerouteCfg command stack-based overflow