CVE-2024-34469 | Rukovoditel up to 3.5.2 user_photo cross site scripting

Inserito da Angelo Barbosa | Mag 5, 2024 | CVE

A vulnerability was found in Rukovoditel up to 3.5.2 and classified as problematic. This issue affects some unknown processing of the file index.php?module=users/registration&action=save. The manipulation of the argument user_photo leads to cross site scripting.

The identification of this vulnerability is CVE-2024-34469. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34469 | Rukovoditel up to 3.5.2 user_photo cross site scripting

Post correlati

CVE-2024-34500 | MediaWiki up to 1.39.5/1.40.1/1.41.0 UnlinkedWikibase Extension Html::rawElement err cross site scripting

CVE-2023-6760 | Thecosy IceCMS up to 2.0.1 user session

CVE-2021-35975 | Systematica Radius up to 3.9.256.777 SMTP Adapter file absolute path traversal

CVE-2024-4666 | Borderless Plugin up to 1.5.3 on WordPress Widgets cross site scripting