CVE-2024-26495 – Cross Site Scripting (XSS) vulnerability in Friendica versions after v.2023.12, allows a …

3 April 2024

Vuln ID: CVE-2024-26495

Published: 2024-04-03 03:15:09.533

Description: Cross Site Scripting (XSS) vulnerability in Friendica versions after v.2023.12, allows a remote attacker to execute arbitrary code and obtain sensitive information via the BBCode tags in the post content and post comments function.

Base Score: –

Vector:

Source: NVD.NIST.GOV

Date:

3 April 2024

Categorie(s):

NVD

Tag(s):

NVD

PKFail bug puts firmware security at risk26 July 2024
Deepfake misuse & deepfake detection (before it’s too late)26 July 2024
Cyber insurance provider Cowbell reels in $60M to grow its product portfolio26 July 2024
Twitter, the DOJ, DarkSeoul, Fake Employees, PlugX, Stargazer Ghost, Aaran Leyland… – SWN #40126 July 2024
Foreign threat actors exploit ServiceNow bugs26 July 2024