CVE-2024-25166 | 71CMS 1.0.0 controller.php uploadfile action cross site scripting

CVE-2024-25166 | 71CMS 1.0.0 controller.php uploadfile action cross site scripting

A vulnerability classified as problematic was found in 71CMS 1.0.0. This vulnerability affects the function uploadfile of the file controller.php. The manipulation of the argument action leads to cross site scripting. This vulnerability was named CVE-2024-25166. The attack can be initiated remotely. There is no exploit available.