CVE-2024-52598 | Bubka 2FAuth up to 5.4.0 Endpoint preview cross site scripting

Posted by Angelo Barbosa | Nov 20, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Bubka 2FAuth up to 5.4.0. This affects an unknown part of the file /api/v1/twofaccounts/preview of the component Endpoint. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-52598. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-52598 | Bubka 2FAuth up to 5.4.0 Endpoint preview cross site scripting

Related Posts

CVE-2024-41802 | xibosignage xibo-cms up to 3.3.11/4.0.13 API Route sql injection (GHSA-x4qm-vvhp-g7c2)

CVE-2024-7745 | Progress WS_FTP Server up to 8.8.7 Web Transfer Module missing critical step in authentication

CVE-2024-47335 | Bit Form Plugin up to 2.13.11 on WordPress sql injection

CVE-2024-43311 | Geek Code Lab Login As Users Plugin up to 1.4.2 on WordPress privileges management