CVE-2024-34468 | Rukovoditel up to 3.5.2 My Page user_photo cross site scripting

Posted by Angelo Barbosa | May 5, 2024 | CVE

A vulnerability was found in Rukovoditel up to 3.5.2. It has been classified as problematic. This affects the function user_photo of the component My Page. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-34468. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34468 | Rukovoditel up to 3.5.2 My Page user_photo cross site scripting

Related Posts

CVE-2024-2867 | collizo4sky Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Plugin cross site scripting

CVE-2023-49142 | OpenHarmony up to 3.2.2 Multimedia Audio use after free

CVE-2024-6172 | Icegram Email Subscribers Plugin up to 5.7.25 on WordPress Unsubscribe sql injection

CVE-2024-40493 | Keith Cullen FreeCoAP 1.0 coap_client_exchange_blockwise2 null pointer dereference