Moderate severityNVD Advisory· Published Dec 20, 2024· Updated Dec 20, 2024
CVE-2024-55342
CVE-2024-55342
Description
A file upload functionality in Piranha CMS 11.1 allows authenticated remote attackers to upload a crafted PDF file to /manager/media. This PDF can contain malicious JavaScript code, which is executed when a victim user opens or interacts with the PDF in their web browser, leading to a XSS vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
PiranhaNuGet | <= 11.1.0 | — |
Affected products
2- Piranha CMS/Piranha CMSdescription
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.