CVE-2024-35224 | OpenProject prior 13.4.2/14.0.2/14.1.0 Add Attachment cross site scripting (GHSA-h26c-j8wg-frjc)

Inserito da Angelo Barbosa | Mag 23, 2024 | CVE

A vulnerability was found in OpenProject and classified as problematic. This issue affects some unknown processing of the component Add Attachment Handler. The manipulation leads to basic cross site scripting.

The identification of this vulnerability is CVE-2024-35224. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-35224 | OpenProject prior 13.4.2/14.0.2/14.1.0 Add Attachment cross site scripting (GHSA-h26c-j8wg-frjc)

Post correlati

CVE-2024-21672 | Atlassian Confluence Data Center/Confluence Server Remote Code Execution

CVE-2024-23658 | Unisoc S8000 Camera Driver denial of service

CVE-2024-33918 | Maxim K AJAX Login and Registration Modal Popup Inline Form Plugin cross site scripting

CVE-2024-2087 | Brizy Plugin up to 2.4.43 on WordPress Form cross site scripting