CVE-2024-52947 | LemonLDAP::NG up to 2.20.0 Upgrade Session Plugin cross site scripting (Issue 3257)

Posted by Angelo Barbosa | Nov 18, 2024 | CVE

A vulnerability, which was classified as problematic, was found in LemonLDAP::NG up to 2.20.0. This affects an unknown part of the component Upgrade Session Plugin. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-52947. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-52947 | LemonLDAP::NG up to 2.20.0 Upgrade Session Plugin cross site scripting (Issue 3257)

Related Posts

CVE-2024-28131 | sira EasyRange 1.41 uncontrolled search path

CVE-2024-32697 | HelloAsso Plugin up to 1.1.5 on WordPress cross site scripting

CVE-2023-25970 | Zendrop Global Dropshipping Plugin up to 1.0.0 on WordPress unrestricted upload

CVE-2024-7979 | Google Chrome up to 127.0.6533.99 Installer out-of-bounds