Cross-Site Scripting Vulnerability in openSUSE Tumbleweed MirrorCache
CVE-2024-49505
6.1MEDIUM
What is CVE-2024-49505?
A Cross-Site Scripting (XSS) vulnerability exists in openSUSE Tumbleweed's MirrorCache, allowing attackers to execute arbitrary JavaScript by manipulating the REGEX and P parameters. This vulnerability can be exploited in affected versions prior to 1.083, potentially leading to unauthorized information access or session hijacking.