CVE-2024-5310 | JFinalCMS up to 20221020 /admin/content Title cross site scripting (I8VHM2)

Inserito da Angelo Barbosa | Mag 24, 2024 | CVE

A vulnerability classified as problematic has been found in JFinalCMS up to 20221020. This affects an unknown part of the file /admin/content. The manipulation of the argument Title leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-5310. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-5310 | JFinalCMS up to 20221020 /admin/content Title cross site scripting (I8VHM2)

Post correlati

CVE-2023-50373 | Alt Manager Plugin up to 1.5.9 on WordPress authorization

CVE-2024-1184 | Nsasoft Network Sleuth 3.0.0.0 Registration denial of service

CVE-2024-35884 | Linux Kernel up to 5.10.214/5.15.153/6.1.84/6.6.25/6.8.4 udp_gro_receive access control

CVE-2023-4397 | Zyxel ATP/USG FLEX/USG FLEX 50/USG20-VPN 5.37 CLI Command buffer overflow