7 matches found
CVE-2024-40347
A reflected cross-site scripting XSS vulnerability in Hyland Alfresco Platform 23.2.1-r96 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the parameter htmlid...
Hyland Alfresco Platform 代码注入漏洞
Hyland Alfresco Platform is an open, modern and secure system from Hyland. Processes and content can be intelligently activated to accelerate business flow. A code injection vulnerability exists in Hyland Alfresco Platform 6.2.2 and prior versions, which originates in the file /share/s/ of the...
CVE-2024-40347
A reflected cross-site scripting XSS vulnerability in Hyland Alfresco Platform 23.2.1-r96 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the parameter htmlid...
CVE-2024-40347
A reflected cross-site scripting XSS vulnerability in Hyland Alfresco Platform 23.2.1-r96 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the parameter htmlid...
CVE-2024-40347
A reflected cross-site scripting XSS vulnerability in Hyland Alfresco Platform 23.2.1-r96 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the parameter htmlid...
CVE-2024-40347
A reflected cross-site scripting XSS vulnerability in Hyland Alfresco Platform 23.2.1-r96 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload into the parameter htmlid...
CVE-2024-40347
CVE-2024-40347 is a reflected XSS in Hyland Alfresco Platform 23.2.1-r96 triggered by a crafted payload in the htmlid parameter. Several sources (NVD, Red Hat, CVE lists, PT-Security) confirm the issue and its browser-context impact (arbitrary code execution in the user’s browser). The vulnerabil...