Lucene search
+L

4 matches found

nvd
nvd
added 2024/12/27 4:15 p.m.24 views

CVE-2024-56508

LinkAce is a self-hosted archive to collect links of your favorite websites. Prior to 1.15.6, a file upload vulnerability exists in the LinkAce. This issue occurs in the "Import Bookmarks" functionality, where malicious HTML files can be uploaded containing JavaScript payloads. These payloads...

7.6CVSS0.00416EPSS
Exploits1References2
cve
cve
added 2024/12/27 3:52 p.m.60 views

CVE-2024-56508

The CVE-2024-56508 entry describes a file upload vulnerability in LinkAce prior to v1.15.6 within the Import Bookmarks function. Malicious HTML files can be uploaded containing JavaScript payloads that execute when the uploaded links are accessed, enabling potential reflected or persistent XSS. T...

7.6CVSS7.2AI score0.00416EPSS
Exploits1References2Affected Software1
cvelist
cvelist
added 2024/12/27 3:52 p.m.30 views

CVE-2024-56508 File Upload Vulnerability Leading to XSS in LinkAce v1.15.5

LinkAce is a self-hosted archive to collect links of your favorite websites. Prior to 1.15.6, a file upload vulnerability exists in the LinkAce. This issue occurs in the "Import Bookmarks" functionality, where malicious HTML files can be uploaded containing JavaScript payloads. These payloads...

7.6CVSS0.00416EPSS
Exploits1References2
osv
osv
added 2024/12/27 3:52 p.m.8 views

CVE-2024-56508 File Upload Vulnerability Leading to XSS in LinkAce v1.15.5

LinkAce is a self-hosted archive to collect links of your favorite websites. Prior to 1.15.6, a file upload vulnerability exists in the LinkAce. This issue occurs in the "Import Bookmarks" functionality, where malicious HTML files can be uploaded containing JavaScript payloads. These payloads...

7.6CVSS6.3AI score0.00416EPSS
Exploits1References4
Rows per page
Query Builder