CVE-2024-44837

2024-09-0600:00:00

mitre

www.cve.org

cross-site scripting

drug v1.0

manager.java

crafted payload

user parameter

arbitrary web scripts

html

injection

EPSS

Percentile

14.7%

JSON

A cross-site scripting (XSS) vulnerability in the component \bean\Manager.java of Drug v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the user parameter.

References

kaput-raptorex-7c1.notion.site/drug-1-0-DOM-based-cross-site-scripting-fae620f769304f67a7488a961d048672

EPSS

Percentile

14.7%

JSON

Related for CVELIST:CVE-2024-44837