CVE-2024-11070 | Sanluan PublicCMS 5.202406.d Tag Type /admin/cmsTagType/save name cross site scripting (IB1Q5J)

Posted by Angelo Barbosa | Nov 11, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5.202406.d. This issue affects some unknown processing of the file /admin/cmsTagType/save of the component Tag Type Handler. The manipulation of the argument name leads to cross site scripting.

The identification of this vulnerability is CVE-2024-11070. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-11070 | Sanluan PublicCMS 5.202406.d Tag Type /admin/cmsTagType/save name cross site scripting (IB1Q5J)

Related Posts

CVE-2024-1885 | LG Signage TV 6.0.0-56 webOS code injection

CVE-2023-41038 | FirebirdSQL Firebird prior 4.0.4.2981/5.0.0.1176 SET BIND Statement allocation of resources (GHSA-6fv8-8rwr-9692)

CVE-2024-32458 | FreeRDP up to 2.11.5/3.4.x out-of-bounds (GHSA-vvr6-h646-mp4p)

CVE-2023-50804 | Samsung Auto T5123 NAS Module improper authentication