Lucene search
K

5 matches found

NVD
NVD
added 2024/11/26 7:15 p.m.31 views

CVE-2024-53620

A cross-site scripting XSS vulnerability in the Article module of SPIP v4.3.3 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Title parameter...

4.8CVSS0.00361EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/11/26 12:0 a.m.13 views

CVE-2024-53619

An authenticated arbitrary file upload vulnerability in the Documents module of SPIP v4.3.3 allows attackers to execute arbitrary code via uploading a crafted PDF file...

7.6AI score0.00545EPSS
Exploits1References1
CVE
CVE
added 2024/11/26 12:0 a.m.63 views

CVE-2024-53619

CVE-2024-53619 concerns an authenticated arbitrary file upload in the Documents module of SPIP v4.3.3 that can lead to arbitrary code execution via a crafted PDF upload. The incident is consistently described across multiple sources as affecting SPIP 4.3.3 with an authenticated file upload path, ...

6.3CVSS7.7AI score0.00545EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/11/26 12:0 a.m.27 views

CVE-2024-53620

A cross-site scripting XSS vulnerability in the Article module of SPIP v4.3.3 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Title parameter...

0.00361EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/11/26 12:0 a.m.18 views

CVE-2024-53619

An authenticated arbitrary file upload vulnerability in the Documents module of SPIP v4.3.3 allows attackers to execute arbitrary code via uploading a crafted PDF file...

0.00545EPSS
Exploits1References1
Rows per page
Query Builder