CVE-2024-11070 | Sanluan PublicCMS 5.202406.d Tag Type /admin/cmsTagType/save name cross site scripting (IB1Q5J)

Posted by Angelo Barbosa | Nov 11, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Sanluan PublicCMS 5.202406.d. This issue affects some unknown processing of the file /admin/cmsTagType/save of the component Tag Type Handler. The manipulation of the argument name leads to cross site scripting.

The identification of this vulnerability is CVE-2024-11070. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-11070 | Sanluan PublicCMS 5.202406.d Tag Type /admin/cmsTagType/save name cross site scripting (IB1Q5J)

Related Posts

CVE-2024-20400 | Cisco TelePresence Video Communication Server Expressway Web-based Management Interface redirect (cisco-sa-expressway-redirect-KJsFuXgj)

CVE-2024-4287 | mintplex-labs anything-llm HTTP POST Request update input validation

CVE-2023-5384 | Infinispan Configuration information disclosure

CVE-2024-40658 | Google Android 12/12L/13/14 SoftVideoDecoderOMXComponent.cpp getConfig out-of-bounds write