Lucene search
HistoryJun 03, 2024 - 8:15 p.m.
CVE-2024-34051
cve-2024-34051
cross-site scripting
remote attackers
crafted payload
facid parameter
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
5.5
Confidence
High
A Reflected Cross-site scripting (XSS) vulnerability located in htdocs/compta/paiement/card.php of Dolibarr before 19.0.2 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into the facid parameter.
Related
osv
osv
Reflected Cross-Site Scripting (XSS) in Dolibarr
2024-06-03 21:30:45
CVE-2024-34051
2024-06-03 20:15:00
cvelist
cvelist
CVE-2024-34051
1976-01-01 00:00:00
vulnrichment
vulnrichment
CVE-2024-34051
1976-01-01 00:00:00
veracode
veracode
Reflected Cross Site Scripting (XSS)
2024-06-06 08:38:57
github
github
Reflected Cross-Site Scripting (XSS) in Dolibarr
2024-06-03 21:30:45
ubuntucve
ubuntucve
CVE-2024-34051
2024-06-03 00:00:00
cve
cve
CVE-2024-34051
2024-06-03 20:15:09
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
5.5
Confidence
High
Related for NVD:CVE-2024-34051