Количество 2
Количество 2
CVE-2024-55342
A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF file to /manager/media. This PDF can contain malicious JavaScript code, which is executed when a victim user opens or interacts with the PDF in their web browser, leading to a XSS vulnerability.
GHSA-cmwp-442x-3rcv
Piranha CMS Cross-site Scripting vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-55342 A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF file to /manager/media. This PDF can contain malicious JavaScript code, which is executed when a victim user opens or interacts with the PDF in their web browser, leading to a XSS vulnerability. | CVSS3: 4.7 | 0% Низкий | около 1 года назад |
| GHSA-cmwp-442x-3rcv Piranha CMS Cross-site Scripting vulnerability | CVSS3: 4.7 | 0% Низкий | около 1 года назад |
Уязвимостей на страницу