CVE-2024-47186 | filamentphp filament up to 3.2.114 ColorColumn/ColumnEntry cross site scripting (GHSA-9h9q-qhxg-89xr)

Inserito da Angelo Barbosa | Set 28, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in filamentphp filament up to 3.2.114. This issue affects some unknown processing. The manipulation of the argument ColorColumn/ColumnEntry leads to cross site scripting.

The identification of this vulnerability is CVE-2024-47186. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47186 | filamentphp filament up to 3.2.114 ColorColumn/ColumnEntry cross site scripting (GHSA-9h9q-qhxg-89xr)

Post correlati

CVE-2024-36582 | alexbinary object-deep-assign 1.0.11 /src/index.js extend prototype pollution

CVE-2024-3011 | Tenda FH1205 2.0.0.7(775) /goform/QuickIndex formQuickIndex PPPOEPassword stack-based overflow

CVE-2024-2572 | SourceCodester Employee Task Management System 1.0 /task-details.php redirect

CVE-2024-2845 | wpdevteam BetterDocs Plugin up to 3.4.2 on WordPress Shortcode cross site scripting