CVE-2024-0721: Jspxcms Survey Label cross site scripting
First published: Fri Jan 19 2024(Updated: )
A vulnerability has been found in Jspxcms 10.2.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Survey Label Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-251545 was assigned to this vulnerability.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| UJCMS Jspxcms | =10.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-0721?
CVE-2024-0721 is classified as a problematic vulnerability affecting Jspxcms 10.2.0.
What type of attack is possible with CVE-2024-0721?
CVE-2024-0721 allows for remote cross-site scripting attacks.
How do I fix CVE-2024-0721?
To fix CVE-2024-0721, update to a patched version of Jspxcms that addresses this vulnerability.
Which software versions are affected by CVE-2024-0721?
CVE-2024-0721 affects Jspxcms version 10.2.0.
Can CVE-2024-0721 be exploited remotely?
Yes, CVE-2024-0721 can be exploited remotely without authentication.
- agent/weakness
- agent/references
- agent/title
- agent/type
- agent/first-publish-date
- agent/description
- agent/author
- agent/severity
- collector/epss-latest
- source/FIRST
- agent/epss
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/jspxcms
- canonical/ujcms jspxcms
- version/ujcms jspxcms/10.2.0