Unrated severityNVD Advisory· Published Jan 7, 2025· Updated Jan 7, 2025
CVE-2024-11626
CVE-2024-11626
Description
Improper Neutralization of Input During CMS Backend (adminstrative section) Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Progress Sitefinity.This issue affects Sitefinity: from 4.0 through 14.4.8142, from 15.0.8200 through 15.0.8229, from 15.1.8300 through 15.1.8327, from 15.2.8400 through 15.2.8421.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: from 4.0 through 14.4.8142, from 15.0.8200 through 15.0.8229, from 15.1.8300 through 15.1.8327, from 15.2.8400 through 15.2.8421
- Progress Software Corporation/Sitefinityv5Range: 4.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.