Lucene search

K
cvelistMitreCVELIST:CVE-2024-25876
HistoryFeb 22, 2024 - 12:00 a.m.

CVE-2024-25876

2024-02-2200:00:00
mitre
www.cve.org
1
cross-site scripting
enhavo cms
header module
v0.13.1
web scripts
html
crafted payload
title text field
arbitrary

AI Score

5.7

Confidence

High

EPSS

0

Percentile

9.0%

A cross-site scripting (XSS) vulnerability in the Header module of Enhavo CMS v0.13.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title text field.

AI Score

5.7

Confidence

High

EPSS

0

Percentile

9.0%

Related for CVELIST:CVE-2024-25876