CVE-2024-45962 | October CMS up to 3.6.30 PDF File cross site scripting

Inserito da Angelo Barbosa | Ott 3, 2024 | CVE

A vulnerability classified as problematic has been found in October CMS up to 3.6.30. Affected is an unknown function of the component PDF File Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-45962. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-45962 | October CMS up to 3.6.30 PDF File cross site scripting

Post correlati

CVE-2024-1597 | pgjdbc up to 42.7.1 Simple Query Mode sql injection (GHSA-24rp-q3w6-vc56)

CVE-2024-36384 | Pointsharp Cryptshare Server up to 6.x Notification Message cross site scripting

CVE-2024-34218 | Totolink CP450 4.1.0cu.747_B20191224 Request NTPSyncWithHost hostTime command injection

CVE-2024-28521 | Netentsec NS-ASG Application Security Gateway 6.3.1 /singlelogin.php loginid sql injection