CVE-2024-23889 | Cups Easy 1.0 URL itemgroupcreate.php itemgroupid cross site scripting

Posted by Angelo Barbosa | Jan 26, 2024 | CVE

A vulnerability classified as problematic was found in Cups Easy 1.0. Affected by this vulnerability is an unknown functionality of the file /cupseasylive/itemgroupcreate.php of the component URL Handler. The manipulation of the argument itemgroupid leads to cross site scripting.

This vulnerability is known as CVE-2024-23889. The attack can be launched remotely. There is no exploit available.

CVE-2024-23889 | Cups Easy 1.0 URL itemgroupcreate.php itemgroupid cross site scripting

Related Posts

CVE-2024-32034 | Decidim up to 0.27.6/0.28.1 Admin Panel /admin cross site scripting (GHSA-rx9f-5ggv-5rh6)

CVE-2024-21913 | Rockwell Automation Arena Simulation up to 16.20.02 heap-based overflow

CVE-2023-52449 | Linux Kernel up to 6.7.1 mtd ftl.ko gluebi_read null pointer dereference

CVE-2024-26027 | Intel Simics Package Manager software prior 1.8.3 uncontrolled search path (intel-sa-01116)