216.73.216.86

CVE-2024-35218

· Published 21/05/2024 14:15 · Modified 21/05/2024 16:54

Labels: CVE-2024-35218 2024-05-21CVE-2024-35218CWE-79[email protected]

Essential information

Published
21/05/2024 14:15
Modified
21/05/2024 16:54
Author
Creator
CVSS
4.2 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N

CVSS metrics

Description

Umbraco CMS is an ASP.NET CMS used by more than 730.000 websites. Stored Cross-site scripting (XSS) enable attackers that have access to backoffice to bring malicious content into a website or application. This vulnerability has been patched in version(s) 8.18.13, 10.8.4, 12.3.7, 13.1.1 by implementing IHtmlSanitizer.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References