Cross Site Scripting vulnerability in jizhicms v.2.5.4 allows a remote attacker to obtain sensitive information via a crafted article publication request.
History

Wed, 23 Apr 2025 01:45:00 +0000

Type Values Removed Values Added
First Time appeared Jizhicms
Jizhicms jizhicms
CPEs cpe:2.3:a:jizhicms:jizhicms:2.5.4:*:*:*:*:*:*:*
Vendors & Products Jizhicms
Jizhicms jizhicms

Wed, 06 Nov 2024 22:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-79
Metrics cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-04-29T00:00:00

Updated: 2024-11-06T21:35:44.891Z

Reserved: 2024-04-23T00:00:00

Link: CVE-2024-33338

cve-icon Vulnrichment

Updated: 2024-08-02T02:27:53.609Z

cve-icon NVD

Status : Analyzed

Published: 2024-04-29T18:15:07.937

Modified: 2025-04-23T01:28:50.760

Link: CVE-2024-33338

cve-icon Redhat

No data.