CVE-2024-28715 | DoraCMS up to 2.18 markdown.jsx markdown0 cross site scripting

Inserito da Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability was found in DoraCMS up to 2.18 and classified as problematic. Affected by this issue is the function markdown0 of the file /app/public/apidoc/oas3/wrap-components/markdown.jsx. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-28715. The attack may be launched remotely. There is no exploit available.

CVE-2024-28715 | DoraCMS up to 2.18 markdown.jsx markdown0 cross site scripting

Post correlati

CVE-2024-25217 | Online Medicine Ordering System 1.0 id sql injection

CVE-2024-44779 | vTiger CRM 7.4.0 viewname cross site scripting

CVE-2024-1110 | Podlove Podcast Publisher Plugin up to 4.0.11 on WordPress Setting Import authorization

CVE-2024-41265 | Cortex 0.42.1 TLS Certificate Verification makeOperatorRequest information disclosure