3 matches found
CVE-2024-35774
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in D’arteweb DImage 360 allows Stored XSS.This issue affects DImage 360: from n/a through 2.0...
CVE-2024-35774
CVE-2024-35774: Stored XSS in D’arteweb DImage 360 (DImage 360) due to improper neutralization of input during web page generation; affects DImage 360 versions up to 2.0. The issue is a stored cross-site scripting vulnerability; the root cause is incorrect handling of user input in page rendering...
WordPress DImage 360 Plugin <= 2.0 is vulnerable to Cross Site Scripting (XSS)
Software DImage 360 Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35774 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 2c7cfe87c199 Credits Ngô Thiên An ancorn from VNPT-VCI Required...