CVE-2024-7453 | FastAdmin 1.5.0.20240328 Attachment Management Section 4 row[url]/row[imagewidth]/row[imageheight] cross site scripting

Posted by Angelo Barbosa | Aug 3, 2024 | CVE

A vulnerability was found in FastAdmin 1.5.0.20240328. It has been declared as problematic. This vulnerability affects unknown code of the file /swdHGFizaW.php/general/attachment/edit/ids/4?dialog=1 of the component Attachment Management Section. The manipulation of the argument row[url]/row[imagewidth]/row[imageheight] leads to cross site scripting.

This vulnerability was named CVE-2024-7453. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-7453 | FastAdmin 1.5.0.20240328 Attachment Management Section 4 row[url]/row[imagewidth]/row[imageheight] cross site scripting

Related Posts

CVE-2024-36233 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2024-43934 | Robert Felty Collapsing Archives Plugin up to 3.0.5 on WordPress cross site scripting

CVE-2024-7155 | TOTOLINK A3300R 17.0.0cu.557_B20221024 /etc/shadow.sample hard-coded password

CVE-2024-8187 | Smart Post Show Plugin up to 3.0.0 on WordPress Pagination Color cross site scripting