CVE-2024-44796 Information
Aug 27, 2024
cve
Description
A cross-site scripting (XSS) vulnerability in the component /auth/AzureRedirect.php of PicUploader commit fcf82ea allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the error_description parameter.
Reference
http://picuploader.com https://github.com/xiebruce/PicUploader https://github.com/xiebruce/PicUploader/issues/90
Share on: