CVE-2024-53470 | WeGIA 3.2.0 gateway_pagamento.php id/name cross site scripting

Inserito da Angelo Barbosa | Dic 5, 2024 | CVE

A vulnerability was found in WeGIA 3.2.0. It has been classified as problematic. Affected is an unknown function of the file /configuracao/gateway_pagamento.php. The manipulation of the argument id/name leads to cross site scripting.

This vulnerability is traded as CVE-2024-53470. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-53470 | WeGIA 3.2.0 gateway_pagamento.php id/name cross site scripting

Post correlati

CVE-2024-25123 | Open-MSS up to 8.3.2 index.py filename path traversal (GHSA-pf2h-qjcr-qvq2)

CVE-2024-5431 | WPCafe Plugin up to 2.2.25 on WordPress Shortcode file inclusion

CVE-2024-9703 | Arconix Shortcodes Plugin up to 2.1.12 on WordPress Shortcode cross site scripting

CVE-2024-0999 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setParentalRules eTime stack-based overflow