Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 29/03/2024 Updated: 17/05/2024

A vulnerability was found in EasyCorp EasyAdmin up to 4.8.9. It has been declared as problematic. Affected by this vulnerability is the function Autocomplete of the file assets/js/autocomplete.js of the component Autocomplete. The manipulation of the argument item leads to cross site scripting. The attack can be launched remotely. Upgrading to version 4.8.10 is able to address this issue. The identifier of the patch is 127436e4c3f56276d548070f99e61b7234200a11. It is recommended to upgrade the affected component. The identifier VDB-258613 was assigned to this vulnerability.

CWE-79 https://vuldb.com/?id.258613 https://vuldb.com/?ctiid.258613 https://github.com/EasyCorp/EasyAdminBundle/pull/5971 https://github.com/EasyCorp/EasyAdminBundle/pull/6067 https://github.com/EasyCorp/EasyAdminBundle/commit/127436e4c3f56276d548070f99e61b7234200a11 https://github.com/EasyCorp/EasyAdminBundle/releases/tag/v4.8.10 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2024-3081

Vulnerability Summary

References

Vulmon Search

About

Products

Connect