CVE-2024-7453 | FastAdmin 1.5.0.20240328 Attachment Management Section 4 row[url]/row[imagewidth]/row[imageheight] cross site scripting

Posted by Angelo Barbosa | Aug 3, 2024 | CVE

A vulnerability was found in FastAdmin 1.5.0.20240328. It has been declared as problematic. This vulnerability affects unknown code of the file /swdHGFizaW.php/general/attachment/edit/ids/4?dialog=1 of the component Attachment Management Section. The manipulation of the argument row[url]/row[imagewidth]/row[imageheight] leads to cross site scripting.

This vulnerability was named CVE-2024-7453. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2024-7453 | FastAdmin 1.5.0.20240328 Attachment Management Section 4 row[url]/row[imagewidth]/row[imageheight] cross site scripting

Related Posts

CVE-2023-22523 | Atlassian Assets Discovery Cloud Assets Discovery Agent Remote Code Execution

CVE-2024-31208 | element-hq synapse up to 1.105.0 V2 State Resolution Algorithm allocation of resources (GHSA-3h7q-rfh9-xm4v)

CVE-2024-34664 | Samsung Devices Knox Guard unusual condition

CVE-2023-6967 | Pods Plugin on WordPress Shortcode sql injection