CVE-2024-57278 | QingScan up to 1.8.0 URL index.html cross site scripting (Issue 41)

Posted by Angelo Barbosa | Feb 8, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in QingScan up to 1.8.0. Affected by this issue is some unknown functionality of the file /webscan/sqlmap/index.html of the component URL Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-57278. The attack may be launched remotely. There is no exploit available.

CVE-2024-57278 | QingScan up to 1.8.0 URL index.html cross site scripting (Issue 41)

Related Posts

CVE-2024-7613 | Tenda FH1206 1.2.0.8(8155) /goform/GstDhcpSetSer fromGstDhcpSetSer dips buffer overflow

CVE-2024-8750 | Synetics Idoit Pro 28 id/lang/mNavID/name/pID/treeNode/type/view cross site scripting

CVE-2023-3408 | Bricks Plugin up to 1.8.1 on WordPress Setting save_settings cross-site request forgery

CVE-2025-24364 | dani-garcia vaultwarden up to 1.32.x Admin Panel injection