CVE-2024-50803

Currently unrated 🤨

Key Information

Vendor: CVE Published:; 19 November 2024

Badges

👾 Exploit Exists🟡 Public PoC

Summary

The mediapool feature of the Redaxo Core CMS application v 5.17.1 is vulnerable to Cross Site Scripting(XSS) which allows a remote attacker to escalate privileges

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-50803-Redaxo
Created by Praison001

References

http://redaxo-core.com

http://redaxo.com

https://github.com/Praison001/CVE-2024-50803-Redaxo

Timeline

Vulnerability published
Nov 19, 2024
🟡
Public PoC available
Nov 16, 2024
👾
Exploit known to exist
Nov 16, 2024

Collectors

NVD Database1 Proof of Concept(s)