CVE-2024-53617

Published
View on NVD ↗
CVSS v3
4.8
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

A Cross Site Scripting vulnerability in LibrePhotos before commit 32237 allows attackers to takeover any account via uploading an HTML file on behalf of the admin user using IDOR in file upload.

LibrePhotos/librephotos
LibrePhotos/librephotos
A self-hosted open source photo management service.
GitHubGitHub
7.99K
ii5mai1/CVE-2024-53617
ii5mai1/CVE-2024-53617
GitHubGitHub