Lucene search

K

MitreCVELIST:CVE-2024-44851

HistorySep 11, 2024 - 12:00 a.m.

CVE-2024-44851

2024-09-1100:00:00

mitre

www.cve.org

1

stored cross-site scripting

perfex crm

discussion section

arbitrary web scripts

EPSS

0

Percentile

14.7%

A stored cross-site scripting (XSS) vulnerability in the Discussion section of Perfex CRM v1.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Content parameter.

References

gist.github.com/0xashfaq/e44a6dece3be498241aebcfaa046e634

github.com/0xashfaq/File-Sharing-module-for-Perfex-CRM-XSS/

EPSS

0

Percentile

14.7%

Related for CVELIST:CVE-2024-44851

vulnrichment1 nvd1 cve1