ID | CVE-2024-48239 | ||||||
Sažetak | An issue was discovered in WTCMS 1.0. In the plupload method in \AssetController.class.php, the app parameters aren't processed, resulting in Cross Site Scripting (XSS). | ||||||
Reference | |||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N | ||||||
Zadnje važnije ažuriranje | 29-10-2024 - 19:35 | ||||||
Objavljeno | 25-10-2024 - 22:15 |