CVE-2024-41572 in Learning with Textsالمعلومات

الملخص

بحسب MITRE • 21/08/2024

Learning with Texts (LWT) 2.0.3 is vulnerable to Cross Site Scripting (XSS). The application has a specific function that does not filter special characters in URL parameters. Remote attackers can inject JavaScript code without authorization.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

مسؤول

MITRE

حجز

18/07/2024

إفشاء

21/08/2024

الاعتدال

تمت الموافقة

إدخال

VDB-275483

EPSS

0.00285

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!