CVE-2024-41947 | xwiki-platform up to 15.10.7/16.3.0 cross site scripting (GHSA-692v-783f-mg8x)

Inserito da Angelo Barbosa | Lug 31, 2024 | CVE

A vulnerability, which was classified as problematic, was found in xwiki-platform up to 15.10.7/16.3.0. This affects an unknown part. The manipulation leads to basic cross site scripting.

This vulnerability is uniquely identified as CVE-2024-41947. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41947 | xwiki-platform up to 15.10.7/16.3.0 cross site scripting (GHSA-692v-783f-mg8x)

Post correlati

CVE-2024-7154 | TOTOLINK A3700R 9.1.2u.5822_B20200513 Password Reset /wizard.html access control

CVE-2024-34821 | Contact List Plugin up to 2.9.87 on WordPress authorization

CVE-2024-3706 | OpenGnsys 1.1.1d controlaccess.php-LAST information disclosure

CVE-2024-2282 | boyiddha Automated-Mess-Management-System 1.0 Login Page /index.php useremail sql injection