CVE-2024-43408 | discourse-placeholder-theme-component cross site scripting (GHSA-9wx4-cmv3-g5jw)

Posted by Angelo Barbosa | Aug 20, 2024 | CVE

A vulnerability, which was classified as problematic, was found in discourse-placeholder-theme-component. Affected is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-43408. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-43408 | discourse-placeholder-theme-component cross site scripting (GHSA-9wx4-cmv3-g5jw)

Related Posts

CVE-2023-48910 | Microcks up to 1.17.1 GET Request /jobs server-side request forgery

CVE-2024-3890 | Happy Addons for Elementor Plugin up to 3.10.6 on WordPress Calendly Widget cross site scripting

CVE-2024-38870 | Zoho ManageEngine OpManager 128237/128249/up to 128103 Reports cross site scripting

CVE-2024-25527 | RuvarOA 6.01/12.01 worklog_template_show.aspx id sql injection