A stored cross-site scripting (XSS) vulnerability in the Edit Page function of Cotonti CMS v0.9.24 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload.
References
Link | Resource |
---|---|
https://mechaneus.github.io/CVE-2024-24115.html | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2024-02-08T00:00:00
Updated: 2024-02-14T22:06:44.816216
Reserved: 2024-01-25T00:00:00
Link: CVE-2024-24115
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-08T20:15:52.933
Modified: 2024-02-15T16:01:23.457
Link: CVE-2024-24115
JSON object: View
Redhat Information
No data.
CWE