CVE-2024-11492 | 115cms up to 20240807 appurladd.html tid cross site scripting

A vulnerability classified as problematic has been found in 115cms up to 20240807. This affects an unknown part of the file /index.php/admin/web/appurladd.html. The manipulation of the argument tid leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-11492. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-11492 | 115cms up to 20240807 appurladd.html tid cross site scripting

Related Posts

CVE-2024-2706 | Tenda AC10U 15.03.06.49 /goform/WifiWpsStart formWifiWpsStart index stack-based overflow

CVE-2024-2880 | GitLab Community Edition/Enterprise Edition up to 16.11.5/17.0.3/17.1.1 Group Member admin_group_member access control (Issue 451921)

CVE-2024-46382 | linlinjava litemall 1.8.0 AdminGoodscontroller.java goodsId/goodsSn/name parameters sql injection (Issue 552)

CVE-2024-0351 | SourceCodester Engineers Online Portal 1.0 session fixiation