CVE-2024-7900

CVSS V2 None CVSS V3 None
Description
A vulnerability, which was classified as problematic, was found in xiaohe4966 TpMeCMS 1.3.3.2. Affected is an unknown function of the file /h.php/general/config?ref=addtabs of the component Basic Configuration Handler. The manipulation of the argument Site Name/Beian/Contact address/copyright/technical support leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Overview
  • CVE ID
  • CVE-2024-7900
  • Assigner
  • VulDB
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-08-17T19:31:04.859Z
  • Last Modified Date
  • 2024-08-17T19:31:04.859Z
References
History
Created Old Value New Value Data Type Notes
2024-08-18 13:04:03 Added to TrackCVE