2 matches found
CVE-2024-8370
creationtimestamp| type| source ---|---|--- 2024-09-02 01:19:47+00:00| seen| https://t.me/cvedetector/4583 2025-01-06 20:15:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113783244019784638 2025-01-06 20:15:57+00:00| seen|...
CVE-2024-8370 Grocy SVG File Upload recipepictures cross site scripting
A vulnerability classified as problematic was found in Grocy up to 4.2.0. This vulnerability affects unknown code of the file /api/files/recipepictures/ of the component SVG File Upload Handler. The manipulation of the argument forceserveas with the input picture' leads to cross site scripting. T...