CVE-2024-37160 | Formwork up to 1.13.0/2.0.0-beta.1 /panel/options/site cross site scripting (GHSA-5pxr-7m4j-jjc6)

Posted by Angelo Barbosa | Jun 7, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Formwork up to 1.13.0/2.0.0-beta.1. This issue affects some unknown processing of the file /panel/options/site. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-37160. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37160 | Formwork up to 1.13.0/2.0.0-beta.1 /panel/options/site cross site scripting (GHSA-5pxr-7m4j-jjc6)

Related Posts

CVE-2024-6491 | Getwid Plugin up to 2.0.10 on WordPress MailChimp API Key missing authentication

CVE-2024-38619 | Linux Kernel up to 6.10-rc3 usb-storage alauda_init_media initialization (16637fea001a)

CVE-2023-52657 | Linux Kernel up to 6.1.80/6.6.20/6.7.8 drm denial of service

CVE-2024-45244 | Hyperledger Fabric up to 2.5.9 Timestamp Privilege Escalation