Lucene search
HistoryFeb 29, 2024 - 6:15 a.m.
CVE-2024-23501
cve-2024-23501
web page generation
cross-site scripting
shopfiles ltd
ebook store
stored xss
vulnerability
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
EPSS
0
Percentile
9.0%
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Shopfiles Ltd Ebook Store allows Stored XSS.This issue affects Ebook Store: from n/a through 5.788.
Related
cve
cve
CVE-2024-23501
2024-02-29 06:15:47
prion
prion
Cross site scripting
2024-02-29 06:15:00
vulnrichment
vulnrichment
cvelist
cvelist
wpvulndb
wpvulndb
Ebook Store < 5.8002 - Admin+ Stored XSS
2024-03-04 00:00:00
wordfence
wordfence
CVSS3
5.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-23501