Security Advisory

CVE-2025-24810

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-28 04:36:53

Last updated 2025-01-28 14:59:09

Assigner jpcert

State PUBLISHED

Description

Cross-site scripting vulnerability exists in Simple Image Sizes 3.2.3 and earlier. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in to the product with the administrative privilege and accessing the settings screen.

← Browse all CVEs View on cve.org ↗