Lucene search
HistoryMay 07, 2024 - 4:15 p.m.
CVE-2024-33748
cross-site scripting
maven
search function
net.mingsoft
ms basic 2.1.13.4
cve-2024-33748
4.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N
5.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Cross-site scripting (XSS) vulnerability in the search function in Maven net.mingsoft MS Basic 2.1.13.4 and earlier.
Related
vulnrichment
vulnrichment
CVE-2024-33748
2024-05-07 00:00:00
osv
osv
MS Basic Cross-site Scripting vulnerability
2024-05-07 18:30:33
cve
cve
CVE-2024-33748
2024-05-07 16:15:07
veracode
veracode
Cross-site Scripting (XSS)
2024-05-08 07:43:23
github
github
MS Basic Cross-site Scripting vulnerability
2024-05-07 18:30:33
cvelist
cvelist
CVE-2024-33748
2024-05-07 00:00:00
4.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N
5.8 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Related for NVD:CVE-2024-33748