CVE-2024-47605 | silverstripe-asset-admin up to 5.3.7 Shortcode cross site scripting (GHSA-7cmp-cgg8-4c82)

Posted by Angelo Barbosa | Jan 15, 2025 | CVE

A vulnerability classified as problematic has been found in silverstripe-asset-admin up to 5.3.7. This affects an unknown part of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-47605. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47605 | silverstripe-asset-admin up to 5.3.7 Shortcode cross site scripting (GHSA-7cmp-cgg8-4c82)

Related Posts

CVE-2024-40522 | SeaCMS 12.9 phomebak.php Remote Code Execution

CVE-2024-21885 | X.org X11 Server XISendDeviceHierarchyEvent heap-based overflow

CVE-2024-7422 | Theme My Login Plugin up to 7.1.7 on WordPress Setting cross-site request forgery

CVE-2024-0537 | Tenda W9 1.0.0.7(4456) httpd setWrlBasicInfo ssidIndex stack-based overflow