Unrated severityNVD Advisory· Published Oct 25, 2024· Updated Oct 29, 2024
CVE-2024-48239
CVE-2024-48239
Description
An issue was discovered in WTCMS 1.0. In the plupload method in \AssetController.class.php, the app parameters aren't processed, resulting in Cross Site Scripting (XSS).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WTCMS/WTCMSdescription
- Range: 1.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.