Advisory Details

Published: Tue 01 Oct 2024

CVE-2024-9411

A vulnerability classified as problematic has been found in OFCMS 1.1.2. This affects the function add of the file /admin/system/dict/add.json?sqlid=system.dict.save. The manipulation of the argument dict_value leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

References (Advisories, Solutions, and Tools):

Note: This product uses data from the NVD API but is not endorsed or certified by the NVD.

Join our newsletter!

Click to subscribe

Stay informed with product updates and security tips delivered to your inbox; no spam.