Reflected Cross Site Scripting (XSS) vulnerability in RageFrame2 v2.6.43, allows remote attackers to execute arbitrary web scripts or HTML and obtain sensitive information via a crafted payload injected into the multiple parameter in the image cropping function.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/jianyan74/rageframe2/issues/114 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-04-11T00:00:00
Updated: 2024-08-02T01:39:00.920Z
Reserved: 2024-03-27T00:00:00
Link: CVE-2024-30880
Vulnrichment
Updated: 2024-07-31T17:53:25.564Z
NVD
Status : Awaiting Analysis
Published: 2024-04-11T05:15:47.603
Modified: 2024-11-21T09:12:31.957
Link: CVE-2024-30880
Redhat
No data.