Vulnerabilities

CVE-2024-48228

by Fred · 25/10/2024

An issue was found in funadmin 5.0.2. The selectfiles method in backendcontrollersysAttachh.php directly stores the passed parameters and values into the param parameter without filtering, resulting in Cross Site Scripting (XSS).

More information : https://github.com/funadmin/funadmin/issues/31

Similar

Tags: Cybersecurity Alert