Lucene search
MitreCVE-2024-31650HistoryApr 15, 2024 - 9:15 p.m.
CVE-2024-31650
2024-04-1521:15:07
CWE-79
mitre
web.nvd.nist.gov
22
cve-2024-31650
cross-site scripting
online store
arbitrary web scripts
html
last name parameter
nvd
CVSS3
9.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
6
Confidence
High
EPSS
0
Percentile
9.0%
A cross-site scripting (XSS) in Cosmetics and Beauty Product Online Store v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Last Name parameter.
Related
nvd
nvd
CVE-2024-31650
2024-04-15 21:15:07
cvelist
cvelist
CVE-2024-31650
2024-04-15 00:00:00
vulnrichment
vulnrichment
CVE-2024-31650
2024-04-15 00:00:00
CVSS3
9.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
6
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-31650