VYPR
Unrated severityNVD Advisory· Published Oct 25, 2024· Updated Oct 29, 2024

CVE-2024-48239

CVE-2024-48239

Description

An issue was discovered in WTCMS 1.0. In the plupload method in \AssetController.class.php, the app parameters aren't processed, resulting in Cross Site Scripting (XSS).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.