CVE-2024-13141 – “osuuu LightPicture Cross-Site Scripting”

1月 5, 2025
4:16 pm

CVE ID : CVE-2024-13141

Published : Jan. 5, 2025, 3:15 p.m. | 1 hour, 1 minute ago

Description : A vulnerability classified as problematic was found in osuuu LightPicture up to 1.2.2. This vulnerability affects unknown code of the file /api/upload of the component SVG File Upload Handler. The manipulation of the argument file leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 3.5 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13141 – “osuuu LightPicture Cross-Site Scripting”

Elvescore.io

Recent Posts

CVE-2021-27285 – Inspur ClusterEngine Privilege Escalation Vulnerability

CVE-2024-46981 – Redis Lua Scripting Remote Code Execution Vulnerability

CVE-2024-48455 – Netis Router Information Disclosure

CVE-2024-48456 – Netis Router Information Disclosure

CVE-2024-48457 – Netis WiFi Router Information Disclosure

CVE-2024-51741 – Redis Access Control List (ACL) SERVER PANIC Denial of Service Vulnerability

CVE-2024-13141 – “osuuu LightPicture Cross-Site Scripting”

CVE-2024-13141 – “osuuu LightPicture Cross-Site Scripting”