CVE-2024-44818

Published
View on NVD ↗
CVSS v3
5.4
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT

Description

Cross Site Scripting vulnerability in ZZCMS v.2023 and before allows a remote attacker to obtain sensitive information via the HTTP_Referer header of the caina.php component.

gkdgkd123/codeAudit
gkdgkd123/codeAuditUNAVAILABLE
GitHubGitHub