CVE-2024-48927 | Umbraco CMS up to 8.18.14/10.8.6/13.5.1 SVG File Preview injection (GHSA-5955-cwv4-h7qh)

Posted by Angelo Barbosa | Oct 22, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Umbraco CMS up to 8.18.14/10.8.6/13.5.1. Affected is an unknown function of the component SVG File Preview. The manipulation leads to injection.

This vulnerability is traded as CVE-2024-48927. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-48927 | Umbraco CMS up to 8.18.14/10.8.6/13.5.1 SVG File Preview injection (GHSA-5955-cwv4-h7qh)

Related Posts

CVE-2024-8631 | GitLab Enterprise Edition up to 17.1.6/17.2.4/17.3.1 Group Member privilege defined with unsafe actions (Issue 462665)

CVE-2024-7901 | Scada-LTS 2.7.8 Message Scada cross site scripting

CVE-2024-43164 | Blockspare Plugin up to 3.2.0 on WordPress cross site scripting

CVE-2024-42055 | Cervantes up to 0.5-alpha cross site scripting