CVE-2024-47227 | iRedAdmin up to 2.5 order_name cross site scripting

Posted by Angelo Barbosa | Sep 23, 2024 | CVE

A vulnerability was found in iRedAdmin up to 2.5 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument order_name leads to cross site scripting.

This vulnerability is handled as CVE-2024-47227. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47227 | iRedAdmin up to 2.5 order_name cross site scripting

Related Posts

CVE-2024-1514 | WP eCommerce Plugin up to 3.15.1 on WordPress sql injection

CVE-2024-33949 | Vark Min and Max Purchase for WooCommerce Plugin up to 2.0.0 on WordPress cross site scripting

CVE-2023-51588 | Voltronic Power ViewPower Pro MySQL hard-coded credentials (ZDI-23-1893)

CVE-2024-4511 | Shanghai Sunfull Automation BACnet Server HMI1002-ARM 2.0.4 Message buffer overflow