CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-54775: Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site Scripting (XSS) vulnerability via /admin/auth/menu and /admin/auth/extensions.

Description

Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site Scripting (XSS) vulnerability via /admin/auth/menu and /admin/auth/extensions.

Vendor: n/a

Product: n/a

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.44% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

2024-12-28 00:31:06 UTC
CVE

Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site Scripting (XSS) vulnerability via /admin/auth/menu and /admin/auth/extensions.
2024-12-30 17:15:13 UTC
Github Advisory Database (Composer)

[dcat/laravel-admin] Dcat-Admin Cross-Site Scripting (XSS) vulnerability