CVE-2024-28715 | DoraCMS up to 2.18 markdown.jsx markdown0 cross site scripting

Inserito da Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability was found in DoraCMS up to 2.18 and classified as problematic. Affected by this issue is the function markdown0 of the file /app/public/apidoc/oas3/wrap-components/markdown.jsx. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-28715. The attack may be launched remotely. There is no exploit available.

CVE-2024-28715 | DoraCMS up to 2.18 markdown.jsx markdown0 cross site scripting

Post correlati

CVE-2024-26665 | Linux Kernel up to 5.10.209/5.15.148/6.1.77/6.6.16/6.7.4 ICMPv6 do_csum out-of-bounds

CVE-2024-34987 | PHPGurukul Online Fire Reporting System 1.2 ofrs/admin/index.php username sql injection

CVE-2023-42436 | WESEEK GROWI up to 3.3.x cross site scripting

CVE-2024-5545 | Motors Plugin up to 1.4.9 on WordPress authorization