CVE-2024-33326 | Lumisxp 15.0.x/16.1.x XsltResultControllerHtml.jsp lumPageID cross site scripting

Inserito da Angelo Barbosa | Giu 26, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Lumisxp 15.0.x/16.1.x. Affected by this issue is some unknown functionality of the file XsltResultControllerHtml.jsp. The manipulation of the argument lumPageID leads to cross site scripting.

This vulnerability is handled as CVE-2024-33326. The attack may be launched remotely. There is no exploit available.

CVE-2024-33326 | Lumisxp 15.0.x/16.1.x XsltResultControllerHtml.jsp lumPageID cross site scripting

Post correlati

CVE-2022-29409 | ThingsForRestaurants Quick Restaurant Reservations Plugin up to 1.4.1 on WordPress cross site scripting

CVE-2024-6452 | linlinjava litemall up to 1.8.0 AdminGoodscontroller.java goodsId/goodsSn/name sql injection (Issue 548)

CVE-2023-50431 | Linux Kernel up to 6.6.5 habanalabs_ioctl.c sec_attest_info information disclosure

CVE-2024-24157 | gnuboard g6 c2cc1f5069e00491ea48618d957332d90f6d40e4 board.py cross site scripting