- Description
- A vulnerability classified as problematic was found in osuuu LightPicture up to 1.2.2. This vulnerability affects unknown code of the file /api/upload of the component SVG File Upload Handler. The manipulation of the argument file leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
- Source
- cna@vuldb.com
- NVD status
- Analyzed
CVSS 4.0
- Type
- Secondary
- Base score
- 5.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- MEDIUM
CVSS 3.1
- Type
- Primary
- Base score
- 5.4
- Impact score
- 2.7
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Secondary
- Base score
- 4
- Impact score
- 2.9
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:N/I:P/A:N
- Hype score
- Not currently trending
id: CVE-2024-13141 sourceIdentifier: cna@vuldb.com published: 01/05/2025 03:15:17 PM vulnStatus: Received BaseSeverity: MEDIUM BaseScore: 5.3 url: https://t.co/X03d0asXF3
@CVETracker
5 Jan 2025
36 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-13141 A vulnerability classified as problematic was found in osuuu LightPicture up to 1.2.2. This vulnerability affects unknown code of the file /api/upload of the component SVG File Upload Handler. The m... https://t.co/MPnsREuvQg
@VulmonFeeds
5 Jan 2025
42 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-13141 A vulnerability classified as problematic was found in osuuu LightPicture up to 1.2.2. This vulnerability affects unknown code of the file /api/upload of the componen… https://t.co/HCJFO3KZbU
@CVEnew
5 Jan 2025
587 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:osuuu:lightpicture:1.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD1EF5E0-DD84-4D9A-8408-482F1BFDB5BC"
},
{
"criteria": "cpe:2.3:a:osuuu:lightpicture:1.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "58889D17-E1AA-4D73-9708-BD53B3CB9976"
},
{
"criteria": "cpe:2.3:a:osuuu:lightpicture:1.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2C7EFE62-69C0-48F3-BFEF-F6C9DFC53677"
}
],
"operator": "OR"
}
]
}
]