XSS - CVE CyberSecurity Database News (Page 56)

Feb 22, 2024 XSS iOS Exploit

CVE-2024-26284 - Exploiting UXSS in Focus for iOS (< 123) with a 302 Redirect

On February 2024, a serious vulnerability — CVE-2024-26284 — was disclosed in Focus for iOS, a popular content blocker. This bug allows attackers to perform a Universal

Feb 22, 2024 XSS Exploit

CVE-2024-25876 - XSS Vulnerability in Enhavo CMS v.13.1 Header Module – Exploit Details and Mitigation

Enhavo CMS is a flexible content management system built with Symfony and Open Source for building websites fast and efficiently. Recently, a security vulnerability has

Feb 22, 2024 XSS Exploit PHP

CVE-2024-25875 - Exploiting XSS in Enhavo CMS Header Module (v.13.1) – PoC & Remediation Guide

Overview: Recently, a Cross-Site Scripting (XSS) flaw—CVE-2024-25875—was discovered in the Header module of Enhavo CMS version .13.1. This allows attackers to inject

Feb 22, 2024 XSS PHP

CVE-2024-25873 - Exploiting HTML Injection in Enhavo v.13.1 Blockquote Author Field

Enhavo is a modern open-source CMS written in PHP and Symfony, favored for its modular structure and support for custom content types. However, even polished

Feb 22, 2024 XSS Exploit PHP

CVE-2024-25874 - XSS Vulnerability in Enhavo CMS v.13.1’s Create Tag Field – Details & Exploit Guide

The recently discovered CVE-2024-25874 exposes a critical Cross-Site Scripting (XSS) vulnerability in Enhavo CMS v.13.1. Attackers can exploit this flaw in the New/