Lucene search
+L

4 matches found

Circl
Circl
added 2025/02/11 6:19 p.m.10 views

CVE-2025-24415

creationtimestamp| type| source ---|---|--- 2025-02-11 18:19:16+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbih6zta2x 2025-02-11 18:48:46+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113986746350199409...

8.7CVSS8.6AI score0.00684EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/02/11 6:15 p.m.3 views

CVE-2025-24415

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed...

8.7CVSS5.7AI score0.00684EPSS
Exploits0References2
NVD
NVD
added 2025/02/11 6:15 p.m.22 views

CVE-2025-24415

Adobe Commerce versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by a low-privileged attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed...

8.7CVSS0.00684EPSS
Exploits0References1
CVE
CVE
added 2025/02/11 5:37 p.m.81 views

CVE-2025-24415

Adobe Commerce and Magento Open Source are affected by a stored XSS vulnerability in vulnerable form fields across versions 2.4.8-beta1, 2.4.7-p3, 2.4.6-p8, 2.4.5-p10, 2.4.4-p11 and earlier. A low-privileged attacker can inject malicious scripts, which may execute in a victim’s browser and could ...

8.7CVSS7.5AI score0.00684EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder