CVE-2024-5380 | jsy-1 short-url 1.0.0 admin.php cross site scripting (I8UP2A)

Inserito da Angelo Barbosa | Mag 25, 2024 | CVE

A vulnerability classified as problematic has been found in jsy-1 short-url 1.0.0. Affected is an unknown function of the file admin.php. The manipulation of the argument url leads to cross site scripting.

This vulnerability is traded as CVE-2024-5380. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5380 | jsy-1 short-url 1.0.0 admin.php cross site scripting (I8UP2A)

Post correlati

CVE-2024-40767 | OpenStack Nova up to 27.4.0/28.2.0/29.1.0 QCOW2 Image information disclosure

CVE-2023-22522 | Atlassian Confluence Data Center/Confluence Server prior 7.19.17/8.4.5/8.5.4/8.6.2/8.7.1 Template injection

CVE-2024-1273 | Starbox Plugin up to 3.4.x on WordPress cross site scripting

CVE-2023-49270 | Kashipara Group Hotel Management 1.0 reservation.php check_in_date cross site scripting