Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-35621

May 28, 2024, 5:11 p.m.

Tags

cve@mitre.org
2024-05-28
CVE-2024-35621

Product(s) Impacted

Formwork

  • before 1.13.0

Description

A cross-site scripting (XSS) vulnerability in the Edit function of Formwork before 1.13.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Content field.

Weaknesses

Date

Published: May 28, 2024, 4:15 p.m.

Last Modified: May 28, 2024, 5:11 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://github.com/ cve@mitre.org