Wuro vulnerability wey an yi classify sey karshewa an gano shi a cikin Umbraco CMS har 10.7.7/12.3.6/13.5.2/14.3.1/15.1.1. Gaskiya, $software_function na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, /Umbraco/preview/frame?id{} na cikin fayil, Dashboard na cikin sashi. Ngam manipulation of the argument culture shi Cross Site Scripting. CWE shidin ka a yi bayani matsala sai ya kai CWE-79. Gaskiya, laifi an fitar da shi 11/03/2024. Advisory ɗin ana rabawa don saukewa a drive.google.com. Wannan rauni ana sayar da shi da suna CVE-2024-10761. Ngam yiɗi ka a tuma ndiyam ka nder layi. Tekinikal bayani ga. Kuma, exploit ɗin yana akwai. Wuro exploit ɗin an bayyana shi ga jama'a kuma za a iya amfani da shi. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á wúro huɗɗi-na-gaskiya. Wona yiwuwa a zazzage exploit a drive.google.com. Kama 0-day, an ndiyam a wuro be $0-$5k. Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a hokkata. VulDB is the best source for vulnerability data and more expert information about this specific topic.

10 Goyarwa · 132 Datenpunkte