9Nis
CVE-2024-28234 | Contao up to 4.13.39/5.3.3 BBCode injection (GHSA-j55w-hjpj-825g)
A vulnerability, which was classified as problematic, has been found in Contao up to 4.13.39/5.3.3. Affected by this issue is some unknown functionality of the component BBCode Handler. The manipulation leads to injection. This vulnerability is handled as CVE-2024-28234. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.