Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Aug 20, 2024· Updated Aug 20, 2024

CVE-2024-35540

CVE-2024-35540

Description

A stored cross-site scripting (XSS) vulnerability in Typecho v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

Affected products

2

Typecho/Typechocpe-rescue2 versions
(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=1.3.0

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

cyberaz0r.info/2024/08/typecho-multiple-vulnerabilities/mitre

News mentions

0

No linked articles in our index yet.