CVE-2024-44920 | SeaCMS 12.9 admin_collect_news.php siteurl cross site scripting

Posted by Angelo Barbosa | Sep 3, 2024 | CVE

A vulnerability, which was classified as problematic, was found in SeaCMS 12.9. This affects an unknown part of the file admin_collect_news.php. The manipulation of the argument siteurl leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-44920. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-44920 | SeaCMS 12.9 admin_collect_news.php siteurl cross site scripting

Related Posts

CVE-2023-6251 | Checkmk up to 2.0.0p39/2.1.0p36/2.2.0p14 User-Message cross-site request forgery

CVE-2024-0246 | IceWarp 12.0.2.1/12.0.3.1 Utility Download /install/ lang cross site scripting

CVE-2024-22588 | Kwik 745fd4e2 Encryption Key Privilege Escalation (Issue 31)

CVE-2023-49606 | Tinyproxy 1.10.0/1.11.1 HTTP Connection Header use after free (TALOS-2023-1889)