Security Advisory

CVE-2024-33209

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-02 00:00:00

Last updated 2025-03-14 15:50:11

Assigner mitre

State PUBLISHED

Description

FlatPress v1.3 is vulnerable to Cross Site Scripting (XSS). An attacker can inject malicious JavaScript code into the "Add New Entry" section, which allows them to execute arbitrary code in the context of a victims web browser.

← Browse all CVEs View on cve.org ↗