How severe is CVE-2024-48622?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.6 out of 10.

What type of vulnerability is CVE-2024-48622?

This is classified as CWE-79, which is a common weakness in software security.

CVE-2024-48622

MEDIUM Year: 2024

CVSS v3 Score

6.6

Medium

Weakness Type

CWE-79

View all →

Vulnerability Description

A cross-site scripting (XSS) issue in DomainMOD below v4.12.0 allows remote attackers to inject JavaScript code via admin/domain-fields/edit.php and the cdfid parameter.

CVE-2021-3783

MEDIUM

CVSS:6.6(Medium)

yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4116

MEDIUM

CVSS:6.6(Medium)

yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4139

MEDIUM

CVSS:6.6(Medium)

pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4175

MEDIUM

CVSS:6.6(Medium)

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4179

MEDIUM

CVSS:6.6(Medium)

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2022-0262

MEDIUM

CVSS:6.6(Medium)

Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.7.

CWE-792022

CVE-2024-48622

Vulnerability Description

Related Vulnerabilities

CVE-2021-3783

CVE-2021-4116

CVE-2021-4139

CVE-2021-4175

CVE-2021-4179

CVE-2022-0262