Security Advisory

CVE-2022-24586

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-15 13:54:45

Last updated 2024-08-03 04:13:56

Assigner mitre

State PUBLISHED

Description

A stored cross-site scripting (XSS) vulnerability in the component /core/admin/categories.php of PluXml v5.8.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the content and thumbnail parameters.

← Browse all CVEs View on cve.org ↗