CVE-2024-9411 - TCPDF Cross Site Scripting (XSS)

1 month ago 23
ARTICLE AD BOX
CVE ID : CVE-2024-9411
Published : Oct. 1, 2024, 8:15 p.m. | 24 minutes ago
Description : A vulnerability classified as problematic has been found in OFCMS 1.1.2. This affects the function add of the file /admin/system/dict/add.json?sqlid=system.dict.save. The manipulation of the argument dict_value leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Severity: 3.5 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article