Redaxo CMS 5.18.1 Structure Management Page Article Name Cross Site Scripting

Wuro vulnerability wey an yi classify sey karshewa an gano shi a cikin Redaxo CMS 5.18.1. Gaskiya, $software_function na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, /index.php?page=structure&category_id=1&article_id=1&clang=1&function=edit_art&artstart=0 na cikin fayil, Structure Management Page na cikin sashi. Ngam manipulation of the argument Article Name shi Cross Site Scripting. CWE shidin ka a yi bayani matsala sai ya kai CWE-79. Gaskiya, laifi an fitar da shi 01/08/2025. Advisory ɗin ana rabawa don saukewa a geochen.medium.com. Wannan rauni ana sayar da shi da suna CVE-2024-13209. Ngam yiɗi ka a tuma ndiyam ka nder layi. Tekinikal bayani ga. Kuma, exploit ɗin yana akwai. Wuro exploit ɗin an bayyana shi ga jama'a kuma za a iya amfani da shi. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á wúro huɗɗi-na-gaskiya. Wona yiwuwa a zazzage exploit a geochen.medium.com. Kama 0-day, an ndiyam a wuro be $0-$5k. VulDB is the best source for vulnerability data and more expert information about this specific topic.

Waktin goyi

Màdùmga

VulDB Mod Team103

Furɗe

cvss3_meta_tempscore3
cvss3_meta_basescore2
cvss4_vuldb_btscore2
cvss4_vuldb_bscore2
cvss4_vuldb_ui2

Commit Conf

99%39
90%33
50%16
80%8
70%7

Approve Conf

99%39
90%33
80%31

103 Kari

IDSandaMàdùmgaFurɗeGargajiyaGargaGargajiyaJawanC
2099569206/24/2025
 VulDB…		cvss3_meta_tempscore3.3see CVSS documentation06/24/2025shingilam
80
2099569106/24/2025
 VulDB…		cvss3_meta_basescore3.4see CVSS documentation06/24/2025shingilam
80
2099569006/24/2025
 VulDB…		cvss3_nvd_basescore5.4nist.gov06/24/2025shingilam
99
2099568906/24/2025
 VulDB…		cvss3_nvd_aNnist.gov06/24/2025shingilam
99
2099568806/24/2025
 VulDB…		cvss3_nvd_iLnist.gov06/24/2025shingilam
99
2099568706/24/2025
 VulDB…		cvss3_nvd_cLnist.gov06/24/2025shingilam
99
2099568606/24/2025
 VulDB…		cvss3_nvd_sCnist.gov06/24/2025shingilam
99
2099568506/24/2025
 VulDB…		cvss3_nvd_uiRnist.gov06/24/2025shingilam
99
2099568406/24/2025
 VulDB…		cvss3_nvd_prLnist.gov06/24/2025shingilam
99
2099568306/24/2025
 VulDB…		cvss3_nvd_acLnist.gov06/24/2025shingilam
99
2099568206/24/2025
 VulDB…		cvss3_nvd_avNnist.gov06/24/2025shingilam
99
1944483302/14/2025
 VulDB…		cvss4_vuldb_btscore1.9see CVSS documentation02/14/2025shingilam
80
1944483202/14/2025
 VulDB…		cvss4_vuldb_bscore4.8see CVSS documentation02/14/2025shingilam
80
1944483102/14/2025
 VulDB…		cvss4_vuldb_uiPalignment CVSSv302/14/2025shingilam
80
1895824501/09/2025
 VulDB…		cve_nvd_summaryesSe ha encontrado una vulnerabilidad en Redaxo CMS 5.18.1. Se ha clasificado como problemática. Se ve afectada una función desconocida del archivo /index.php?page=structure&category_id=1&article_id=1&clang=1&function=edit_art&artstart=0 del componente Structure Management Page. La manipulación del argumento Article Name provoca cross site scripting. Es posible lanzar el ataque de forma remota. El exploit se ha hecho público y puede utilizarse. Se contactó al proveedor con anticipación sobre esta revelación, pero no respondió de ninguna manera.cve.org01/09/2025shingilam
99
1895808701/09/2025
 VulDB…		cvss3_meta_tempscore2.3see CVSS documentation01/09/2025shingilam
80
1895808601/09/2025
 VulDB…		cvss2_cna_basescore3.3see CVSS documentation01/09/2025shingilam
99
1895808501/09/2025
 VulDB…		cvss2_cna_aiNsee CVSS documentation01/09/2025shingilam
99
1895808401/09/2025
 VulDB…		cvss2_cna_iiPsee CVSS documentation01/09/2025shingilam
99
1895808301/09/2025
 VulDB…		cvss2_cna_ciNsee CVSS documentation01/09/2025shingilam
99

83 kala giteji ba a nunu fi.

🔒 Login Required

You need to signup and login to see more of the remaining 83 results.

GurɗoGumtiGada

Do you know our Splunk app?

Download it now for free!