CVE-2024-43413 | Xibo CMS up to 4.0.x Data Entry Page cross site scripting (GHSA-pfxp-vxh7-2h9f)

Posted by Angelo Barbosa | Sep 3, 2024 | CVE

A vulnerability was found in Xibo CMS up to 4.0.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Data Entry Page. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-43413. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-43413 | Xibo CMS up to 4.0.x Data Entry Page cross site scripting (GHSA-pfxp-vxh7-2h9f)

Related Posts

CVE-2023-24330 | D-Link DIR-882 FW130B06 POST Request /HNAP1/ command injection

CVE-2024-3024 | appneta tcpreplay up to 4.4.4 get.c get_layer4_v6 heap-based overflow

CVE-2024-45625 | WPMU Forminator Plugin up to 1.34.0 URL cross site scripting

CVE-2024-44996 | Linux Kernel up to 6.6.47/6.10.6 vsock_bpf_recvmsg Privilege Escalation (921f1acf0c3c/b4ee8cf1acc5/69139d2919dd)