CVE-2024-27757

2024-03-1800:00:00

mitre

www.cve.org

flusity cms

xss

vulnerability

gallery name

february 2024

development.

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

flusity CMS through 2.45 allows tools/addons_model.php Gallery Name XSS. The reporter indicates that this product “ceased its development as of February 2024.”

References

github.com/jubilianite/flusity-CMS/security/advisories/GHSA-5843-5m74-7fqh