Lucene search

K
cveMitreCVE-2024-25876
HistoryFeb 22, 2024 - 2:15 p.m.

CVE-2024-25876

2024-02-2214:15:47
mitre
web.nvd.nist.gov
4598
cve-2024-25876
cross-site scripting
xss
enhavo cms
vulnerability
web security
nvd

AI Score

5.6

Confidence

High

EPSS

0

Percentile

9.0%

A cross-site scripting (XSS) vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field.

AI Score

5.6

Confidence

High

EPSS

0

Percentile

9.0%