CVE-2024-33866 | linqi up to 1.4.0.0 on Windows {GUID} cross site scripting

Inserito da Angelo Barbosa | Mag 14, 2024 | CVE

A vulnerability has been found in linqi up to 1.4.0.0 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /api/DocumentTemplate/{GUID}. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-33866. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-33866 | linqi up to 1.4.0.0 on Windows {GUID} cross site scripting

Post correlati

CVE-2024-6492 | Devolutions Remote Desktop Manager up to 2024.2.14.0 on Windows Proxy information disclosure (DEVO-2024-0012)

CVE-2024-29042 | franciscop translate up to 2.x on Node.js opt.id input validation (GHSA-882j-4vj5-7vmj)

CVE-2024-10766 | Codezips Free Exam Hall Seating Management System 1.0 /pages/save_user.php image unrestricted upload

CVE-2024-30178 | Patrick Posner Simply Static Plugin up to 3.1.3 on WordPress cross site scripting