CVE-2024-47536 | StarCitizenTools mediawiki-skins-Citizen up to 2.30.x Setting real name cross site scripting (GHSA-62r2-gcxr-426x)

Posted by Angelo Barbosa | Sep 30, 2024 | CVE

A vulnerability has been found in StarCitizenTools mediawiki-skins-Citizen up to 2.30.x and classified as problematic. This vulnerability affects unknown code of the component Setting Handler. The manipulation of the argument real name leads to basic cross site scripting.

This vulnerability was named CVE-2024-47536. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47536 | StarCitizenTools mediawiki-skins-Citizen up to 2.30.x Setting real name cross site scripting (GHSA-62r2-gcxr-426x)

Related Posts

CVE-2024-25959 | Dell PowerScale OneFS up to 9.4.0.16/9.5.0.7/9.7.0.0/9.7.0.1 log file (dsa-2024-115)

CVE-2024-37172 | SAP S4HANA Finance 107/108 Advanced Payment Management authorization

CVE-2023-6557 | The Events Calendar Plugin up to 6.2.8.2 on WordPress information disclosure

CVE-2023-5991 | Hotel Booking Lite Plugin up to 4.8.4 on WordPress cross-site request forgery