CVE-2024-49379 | umbrel up to 1.2.1 Query Parameter cross site scripting (GHSL-2024-164)

Inserito da Angelo Barbosa | Nov 13, 2024 | CVE

A vulnerability classified as problematic has been found in umbrel up to 1.2.1. This affects an unknown part of the component Query Parameter Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-49379. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49379 | umbrel up to 1.2.1 Query Parameter cross site scripting (GHSL-2024-164)

Post correlati

CVE-2024-5709 | WPBakery Plugin up to 7.7 on WordPress file inclusion

CVE-2024-22770 | Hitron DVR HVR-16781 up to 4.02 default credentials

CVE-2024-40530 | Pantera CRM 401.152/402.072 Header X-Forwarded-For permission

CVE-2024-34717 | PrestaShop 8.1.5 secure_key information disclosure