VYPR
Low severity3.5NVD Advisory· Published Jan 31, 2024· Updated Jun 17, 2026

CVE-2024-1099

CVE-2024-1099

Description

A vulnerability was found in Rebuild up to 3.5.5. It has been classified as problematic. Affected is the function getFileOfData of the file /filex/read-raw. The manipulation of the argument url leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-252456.

Affected products

2
  • Rebuild/Rebuildcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=3.5.5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.