SecBoard
Zurück zur CVE-Übersicht

CVE-2024-45933

MEDIUM(6.6)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

Risk Signal Score17/100 — NIEDRIG
  • CVSS 6.6 — Mittel

EPSS-Score

0%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

6.6

Technische Schwere

Beschreibung

OnlineNewsSite v1.0 is vulnerable to Cross Site Scripting (XSS) which allows attackers to execute arbitrary code via the Title and summary fields in the /admin/post/edit/ endpoint.

Referenzen