CVE-2024-0599 | Jspxcms 10.2.0 Document Management Page InfoController.java title cross site scripting

Posted by Angelo Barbosa | Jan 16, 2024 | CVE

A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file srcmainjavacomjspxcmscorewebbackInfoController.java of the component Document Management Page. The manipulation of the argument title leads to cross site scripting.

This vulnerability is known as CVE-2024-0599. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-0599 | Jspxcms 10.2.0 Document Management Page InfoController.java title cross site scripting

Related Posts

CVE-2024-33691 | OptinMonster Popup Builder Team OptinMonster Plugin up to 2.15.3 on WordPress cross-site request forgery

CVE-2024-1304 | Badger Meter Monitool up to 4.6.3 cross site scripting

CVE-2024-0927 | Tenda AC10U 15.03.06.49_multi_TDE01 fromAddressNat entrys/mitInterface/page stack-based overflow

CVE-2023-42308 | code-projects Exam Form Submission 1.0 Manage Fastrack Subjects cross site scripting