Security Advisory

CVE-2024-25801

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-22 00:00:00

Last updated 2025-03-13 16:09:02

Assigner mitre

State PUBLISHED

Description

SKINsoft S-Museum 7.02.3 allows XSS via the filename of an uploaded file. Unlike in CVE-2024-25802, the attack payload is in the name (not the content) of a file.

← Browse all CVEs View on cve.org ↗