What is CVE-2024-12933 — XSS in Simple Admin Panel?

CVE-2024-12933 is a cross-site scripting (XSS) vulnerability affecting Simple Admin Panel versions 1.0, allowing attackers to inject malicious scripts.

Am I affected by CVE-2024-12933 in Simple Admin Panel?

You are affected if you are using Simple Admin Panel version 1.0. Upgrade to version 1.0.1 to mitigate the risk.

How do I fix CVE-2024-12933 in Simple Admin Panel?

Upgrade Simple Admin Panel to version 1.0.1 or later. Input validation and WAF rules can be temporary workarounds.

Is CVE-2024-12933 being actively exploited?

There is currently no evidence of active exploitation campaigns targeting CVE-2024-12933.

Where can I find the official Simple Admin Panel advisory for CVE-2024-12933?

Check the Simple Admin Panel project's website or GitHub repository for the official advisory related to CVE-2024-12933.

CVE-2024-12933 — Vulnerability Details

NEXTGUARD

Escanear grátis

CVE-2024-12933 — Vulnerability Details | NextGuard

Passos de Detecçãotraduzindo…

• php / web:

curl -s -X POST 'http://your-simple-admin-panel/updateItemController.php?p_name=<script>alert("XSS")</script>&p_desc=test' | grep 'alert("XSS")'

• generic web:

curl -s 'http://your-simple-admin-panel/updateItemController.php?p_name=<script>alert("XSS")</script>&p_desc=test' | grep 'alert("XSS")'

code-projects Simple Admin Panel updateItemController.php cross site scripting

Impacto e Cenários de Ataquetraduzindo…

Contexto de Exploraçãotraduzindo…

Quem Está em Riscotraduzindo…

Passos de Detecçãotraduzindo…

Linha do Tempo do Ataque

Inteligência de Ameaças

Software Afetado

Classificação de Fraqueza (CWE)

Linha do tempo

Mitigação e Soluções Alternativastraduzindo…

Como corrigir

Boletim de Segurança CVE

Perguntas frequentestraduzindo…

What is CVE-2024-12933 — XSS in Simple Admin Panel?

Am I affected by CVE-2024-12933 in Simple Admin Panel?

How do I fix CVE-2024-12933 in Simple Admin Panel?

Is CVE-2024-12933 being actively exploited?

Where can I find the official Simple Admin Panel advisory for CVE-2024-12933?

Seu projeto está afetado?