CVE-2024-46494 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A cross-site scripting (XSS) vulnerability in Typecho v1.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into Name…
Medium CVSS: 5.4

CVE-2024-46494

A cross-site scripting (XSS) vulnerability in Typecho v1.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into Name parameter under a comment for an Article.
Vendor
Typecho
Product
Typecho
CWE
CWE-79
Yayın Tarihi
2025-04-07 20:15:19
Güncelleme
2025-04-23 12:33:52
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-79 Typecho MEDIUM Typecho 2025

Referanslar

https://h40vv3n.github.io/2024/09/05/typecho-xss/ https://h40vv3n.github.io/2024/09/05/typecho-xss/