CVE-2024-23895 | Cups Easy 1.0 URL locationcreate.php locationid cross site scripting

Posted by Angelo Barbosa | Feb 2, 2024 | CVE

A vulnerability classified as problematic has been found in Cups Easy 1.0. Affected is an unknown function of the file /cupseasylive/locationcreate.php of the component URL Handler. The manipulation of the argument locationid leads to cross site scripting.

This vulnerability is traded as CVE-2024-23895. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-23895 | Cups Easy 1.0 URL locationcreate.php locationid cross site scripting

Related Posts

CVE-2024-38380 | Millbeck Communications Proroute H685t-w 3.2.334 cross site scripting (icsa-24-261-02)

CVE-2024-33865 | linqi up to 1.4.0.0 on Windows /api/Cdn/GetFile information disclosure

CVE-2023-48751 | Participants Database Plugin up to 2.5.5 on WordPress authorization

CVE-2024-8585 | Learning Digital Orca HCM up to 10.x File Download path traversal