CVE-2024-35621 in Formworkinformazioni

Riassunto

di MITRE • 28/05/2024

A cross-site scripting (XSS) vulnerability in the Edit function of Formwork before 1.13.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Content field.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Prenotare

17/05/2024

Divulgazione

28/05/2024

Moderazione

accettato

CPE

pronto

EPSS

0.00271

KEV

no

Attività

molto basso

Fonti

Do you know our Splunk app?

Download it now for free!