CVE-2026-24833 | dnnsoftware Dnn.Platform up to 9.13.9/10.1.x Persona Bar Description cross site scripting (GHSA-9r3h-mpf8-25gj)

Inserito da Angelo Barbosa | Gen 28, 2026 | CVE

A vulnerability was found in dnnsoftware Dnn.Platform up to 9.13.9/10.1.x. It has been rated as problematic. Affected is an unknown function of the component Persona Bar. The manipulation of the argument Description leads to cross site scripting.

This vulnerability is listed as CVE-2026-24833. The attack may be initiated remotely. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-24833 | dnnsoftware Dnn.Platform up to 9.13.9/10.1.x Persona Bar Description cross site scripting (GHSA-9r3h-mpf8-25gj)

Post correlati

CVE-2024-35595 | Xintongda OA 2023.12.30.1 PDF File unrestricted upload

CVE-2024-10583 | danieliser Popup Maker Plugin up to 1.20.2 on WordPress post_title cross site scripting

CVE-2024-10459 | Mozilla Thunderbird up to 131 use after free

CVE-2024-2974 | WooCommerce Essential Addons for Elementor Plugin up to 5.9.13 on WordPress information disclosure