Vulnerability Description
Phormer prior to version 3.35 contains a cross-site scripting vulnerability. If this vulnerability is exploited, a remote unauthenticated attacker may execute an arbitrary script on the web browser of the user.
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- http://p.horm.org/er/
- https://github.com/eyedean/phormer
- https://jvn.jp/en/jp/JVN61054671/
- https://sourceforge.net/projects/rephormer/
- http://p.horm.org/er/
- https://github.com/eyedean/phormer
- https://jvn.jp/en/jp/JVN61054671/
- https://sourceforge.net/projects/rephormer/
FAQ
What is CVE-2024-34749?
CVE-2024-34749 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Phormer prior to version 3.35 contains a cross-site scripting vulnerability. If this vulnerability is exploited, a remote unauthenticated attacker may execute an arbitrary script on the web browser of...
How severe is CVE-2024-34749?
CVE-2024-34749 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-34749?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.