Lucene search
HistoryJun 28, 2024 - 12:15 p.m.
CVE-2024-5737
html injection
admirorframes
joomla extension
cve-2024-5737
0.0004 Low
EPSS
Percentile
15.7%
Script afGdStream.php in AdmirorFrames Joomla! extension doesn’t specify a content type and as a result default (text/html) is used. An attacker may embed HTML tags directly in image data which is rendered by a webpage as HTML. This issue affects AdmirorFrames: before 5.0.
Related
cvelist
cvelist
CVE-2024-5737 HTML Injection in AdmirorFrames Joomla! Extension
2024-06-28 11:29:03
cve
cve
CVE-2024-5737
2024-06-28 12:15:11