Lucene search
China National Vulnerability DatabaseCNVD-2024-12713HistoryFeb 06, 2024 - 12:00 a.m.
XunRuiCMS Cross-Site Scripting Vulnerability (CNVD-2024-12713)
2024-02-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
23
xunruicms
cross-site scripting
vulnerability
remote attackers
sensitive information
malicious requests
content management system
XunRuiCMS (XunRui CMS) is an open source content management system (CMS). A cross-site scripting vulnerability exists in XunRuiCMS v4.6.2 and earlier versions. The vulnerability stems from the application’s lack of effective filtering and escaping of user-supplied data, which can be exploited by remote attackers to obtain sensitive information by sending specially crafted malicious requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| xunruicms xunruicms | le | 4.6.2 |
Related
nvd
nvd
CVE-2024-24388
2024-02-02 10:15:08
cve
cve
CVE-2024-24388
2024-02-02 10:15:08
prion
prion
Cross site scripting
2024-02-02 10:15:00
cvelist
cvelist
CVE-2024-24388
2024-02-02 00:00:00