• caglararli@hotmail.com
  • 05386281520

CVE-2024-42906 | TestLink up to 1.9.19 Popup file name cross site scripting

Çağlar Arlı      -    12 Views

CVE-2024-42906 | TestLink up to 1.9.19 Popup file name cross site scripting

A vulnerability was found in TestLink up to 1.9.19. It has been classified as problematic. This affects an unknown part of the component Popup Handler. The manipulation of the argument file name leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-42906. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.