paragbagul111/CVE-2024-25411

Releases0

A cross-site scripting (XSS) vulnerability in Flatpress v1.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter in setup.php

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-25411 ↗	Sep 27, 2024Friday, 27 September 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in Flatpress v1.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter in setup.php.