CVE-2024-12183

CVSS V2 None CVSS V3 None
Description
A vulnerability, which was classified as problematic, was found in DedeCMS 5.7.116. This affects the function RemoveXSS of the file /plus/carbuyaction.php of the component HTTP POST Request Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Overview
  • CVE ID
  • CVE-2024-12183
  • Assigner
  • VulDB
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-12-04T23:00:13.891Z
  • Last Modified Date
  • 2024-12-04T23:00:13.891Z
References
Reference URL Reference Tags
https://vuldb.com/?id.286905 vdb-entry technical-description
https://vuldb.com/?ctiid.286905 signature permissions-required
https://vuldb.com/?submit.453374 third-party-advisory
https://github.com/Hebing123/cve/issues/79 exploit issue-tracking
History
Created Old Value New Value Data Type Notes
2024-12-05 13:23:23 Added to TrackCVE