CVE-2024-33101 | ThinkSAAS 3.7.0 /action/anti.php word cross site scripting (Issue 34)

Posted by Angelo Barbosa | Apr 30, 2024 | CVE

A vulnerability classified as problematic was found in ThinkSAAS 3.7.0. This vulnerability affects unknown code of the file /action/anti.php. The manipulation of the argument word leads to cross site scripting.

This vulnerability was named CVE-2024-33101. The attack can be initiated remotely. There is no exploit available.

CVE-2024-33101 | ThinkSAAS 3.7.0 /action/anti.php word cross site scripting (Issue 34)

Related Posts

CVE-2024-1713 | plv8 3.2.1 Autovacuum status code (GHSA-r7m9-grw7-vcc4)

CVE-2023-49189 | Getsocial Social Share Buttons & Analytics Plugin up to 4.3.12 on WordPress cross site scripting

CVE-2023-35749 | D-Link DAP-2622 stack-based overflow (ZDI-23-1254)

CVE-2023-6991 | JSM Shortcode Plugin up to 2.7.0 on WordPress server-side request forgery