CVE-2024-57772 | JFinalOA 1.0.2 getDraftListPage?type cross site scripting

Posted by Angelo Barbosa | Jan 16, 2025 | CVE

A vulnerability classified as problematic has been found in JFinalOA 1.0.2. This affects an unknown part of the file /bumph/getDraftListPage?type. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-57772. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-57772 | JFinalOA 1.0.2 getDraftListPage?type cross site scripting

Related Posts

CVE-2024-51246 | Draytek Vigor 3900 1.5.1.3 mainfunction.cgi doPPTP command injection

CVE-2023-51467 | Apache OFBiz up to 18.12.10 improper authentication

CVE-2024-7681 | code-projects College Management System 1.0 Login Page login.php email/password sql injection

CVE-2024-10128 | Topdata Inner Rep Plus WebServer 2.01 td.js.gz risky encryption