CVE-2024-6539 | heyewei SpringBootCMS up to 2024-05-28 Guestbook /guestbook Content cross site scripting (IA9D7F)

Inserito da Angelo Barbosa | Lug 7, 2024 | CVE

A vulnerability classified as problematic has been found in heyewei SpringBootCMS up to 2024-05-28. Affected is an unknown function of the file /guestbook of the component Guestbook Handler. The manipulation of the argument Content leads to cross site scripting.

This vulnerability is traded as CVE-2024-6539. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-6539 | heyewei SpringBootCMS up to 2024-05-28 Guestbook /guestbook Content cross site scripting (IA9D7F)

Post correlati

CVE-2023-49826 | PenciDesign Soledad Theme up to 8.4.1 on WordPress deserialization

CVE-2024-3560 | LearnPress Plugin up to 4.2.6.4 on WordPress cross site scripting

CVE-2024-0771 | Nsasoft Product Key Explorer 4.0.9 Registration Name/Key memory corruption

CVE-2024-31235 | WebToffee Comments Import & Export Plugin up to 2.3.5 on WordPress cross-site request forgery