CVE-2024-13137

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-13137

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-13137.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-13137

Published

2025-01-05T10:15:06Z

Modified

2025-10-21T17:26:13.043608Z

Severity

5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

A vulnerability was found in wangl1989 mysiteforme 1.0. It has been classified as problematic. This affects the function RestResponse of the file src/main/java/com/mysiteforme/admin/controller/system/SiteController. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

References

Affected packages

Git / github.com/wangl1989/mysiteforme

Affected ranges

Type: GIT
Repo: https://github.com/wangl1989/mysiteforme
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

6bb9a1f7f6b539f79557895d4f1c0213f9164a5c

Affected versions

v1.*

v1.0.0