CVE-2024-5279
Severity CVSS v4.0:
Pending analysis
Type:
CWE-79
Cross-Site Scripting (XSS)
Publication date:
23/05/2024
Last modified:
04/06/2024
Description
A vulnerability was found in Qiwen Netdisk up to 1.4.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component File Rename Handler. The manipulation with the input leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-266083.
Impact
Base Score 3.x
3.50
Severity 3.x
LOW
Base Score 2.0
4.00
Severity 2.0
MEDIUM