5 matches found
CVE-2024-55342
A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF file to /manager/media. This PDF can contain malicious JavaScript code, which is executed when a victim user opens or interacts with the PDF in their web browser, leading to a XSS...
CVE-2024-55342
A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF file to /manager/media. This PDF can contain malicious JavaScript code, which is executed when a victim user opens or interacts with the PDF in their web browser, leading to a XSS...
CVE-2024-55342
creationtimestamp| type| source ---|---|--- 2024-12-20 18:49:03+00:00| seen| https://infosec.exchange/users/cve/statuses/113686645524034447 2024-12-20 19:15:50+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ldr3wqusze2s 2024-12-20 20:55:56+00:00| seen|...
CVE-2024-55342
A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF file to /manager/media. This PDF can contain malicious JavaScript code, which is executed when a victim user opens or interacts with the PDF in their web browser, leading to a XSS...
CVE-2024-55342
A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF file to /manager/media. This PDF can contain malicious JavaScript code, which is executed when a victim user opens or interacts with the PDF in their web browser, leading to a XSS...