CVE-2024-29878 | Sentrifugo 3.2 URL add description cross site scripting

Posted by Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability classified as problematic has been found in Sentrifugo 3.2. Affected is an unknown function of the file /sentrifugo/index.php/sitepreference/add of the component URL Handler. The manipulation of the argument description leads to cross site scripting.

This vulnerability is traded as CVE-2024-29878. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-29878 | Sentrifugo 3.2 URL add description cross site scripting

Related Posts

CVE-2024-23450 | Elasticsearch up to 7.17.18/8.12.x Pipeline resource consumption

CVE-2023-50714 | yii2-authclient prior 2.2.15 Oauth2 PKCE improper authentication

CVE-2024-33525 | ILIAS up to 7.30/8.10/9.0 XML File Upload cross site scripting

CVE-2022-48577 | Apple macOS APFS Privilege Escalation