CVE-2024-9007 | jeanmarc77 123solar 1.8.4.5 /detailed.php date1 cross site scripting (Issue 73)

Posted by Angelo Barbosa | Sep 19, 2024 | CVE

A vulnerability classified as problematic has been found in jeanmarc77 123solar 1.8.4.5. This affects an unknown part of the file /detailed.php. The manipulation of the argument date1 leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-9007. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-9007 | jeanmarc77 123solar 1.8.4.5 /detailed.php date1 cross site scripting (Issue 73)

Related Posts

CVE-2023-50846 | RegistrationMagic Custom Registration Forms, User Registration, Payment, and User Login Plugin sql injection

CVE-2024-2423 | UsersWP Plugin up to 1.2.6 on WordPress Shortcode cross site scripting

CVE-2024-33952 | Justin Tadlock Unique Plugin up to 0.3.0 on WordPress cross site scripting

CVE-2024-38476 | Apache HTTP Server up to 2.4.59 Backend Application information disclosure