Количество 2
Количество 2
CVE-2024-24807
Sulu is a highly extensible open-source PHP content management system based on the Symfony framework. There is an issue when inputting HTML into the Tag name. The HTML is executed when the tag name is listed in the auto complete form. Only admin users can create tags so they are the only ones affected. The problem is patched with version(s) 2.4.16 and 2.5.12.
GHSA-gfrh-gwqc-63cv
Sulu HTML Injection via Autocomplete Suggestion
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-24807 Sulu is a highly extensible open-source PHP content management system based on the Symfony framework. There is an issue when inputting HTML into the Tag name. The HTML is executed when the tag name is listed in the auto complete form. Only admin users can create tags so they are the only ones affected. The problem is patched with version(s) 2.4.16 and 2.5.12. | CVSS3: 2.7 | 1% Низкий | около 2 лет назад |
| GHSA-gfrh-gwqc-63cv Sulu HTML Injection via Autocomplete Suggestion | 1% Низкий | около 2 лет назад |
Уязвимостей на страницу