2 matches found
CVE-2024-44684
TpMeCMS 1.3.3.2 is vulnerable to Cross Site Scripting XSS in /h.php/page?ref=addtabs via the "Title," "Images," and "Content" fields...
CVE-2024-44684
TpMeCMS 1.3.3.2 is vulnerable to Cross Site Scripting (XSS) in /h.php/page?ref=addtabs via the Title, Images, and Content fields. Documents specify the vulnerable endpoint and parameters but do not provide a fixed patched version. Recommended interim measure from PT-2024-31211 is to restrict acce...