CVE-2026-24784 | dnnsoftware Dnn.Platform up to 9.13.9/10.1.x Headers/Footers cross site scripting (GHSA-jjwg-4948-6wxp)

Inserito da Angelo Barbosa | Gen 28, 2026 | CVE

A vulnerability was found in dnnsoftware Dnn.Platform up to 9.13.9/10.1.x. It has been declared as problematic. This impacts an unknown function of the component Headers/Footers. Executing a manipulation can lead to cross site scripting.

This vulnerability is tracked as CVE-2026-24784. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.

CVE-2026-24784 | dnnsoftware Dnn.Platform up to 9.13.9/10.1.x Headers/Footers cross site scripting (GHSA-jjwg-4948-6wxp)

Post correlati

CVE-2024-3063 | WPB Elementor Addons Plugin up to 1.0.9 on WordPress cross site scripting

CVE-2024-8213 | D-Link DNS-1550-04 up to 20240814 /cgi-bin/hd_config.cgi cgi_FMT_R12R5_1st_DiskMGR f_source_dev command injection (SAP10383)

VDB-257781 | mglowinski93 FinanseWebApplication balance.php startDate/endDate sql injection

CVE-2024-7215 | TOTOLINK LR1200 9.3.1cu.2832 /cgi-bin/cstecgi.cgi NTPSyncWithHost host_time command injection