Lucene search
PRIOn knowledge basePRION:CVE-2024-28112HistoryMar 12, 2024 - 8:15 p.m.
Cross site scripting
2024-03-1220:15:00
PRIOn knowledge base
www.prio-n.com
11
peering manager
cross-site scripting
xss attack
bgp session management
version 1.8.3
javascript code
security vulnerability
upgrade
0.0004 Low
EPSS
Percentile
9.1%
Peering Manager is a BGP session management tool. Affected versions of Peering Manager are subject to a potential stored Cross-Site Scripting (XSS) attack in the name attribute of AS or Platform. The XSS triggers on a routers detail page. Adversaries are able to execute arbitrary JavaScript code with the permission of a victim. XSS attacks are often used to steal credentials or login tokens of other users. This issue has been addressed in version 1.8.3. Users are advised to upgrade. There are no known workarounds for this vulnerability.
Related
cve
cve
CVE-2024-28112
2024-03-12 20:15:07
nvd
nvd
CVE-2024-28112
2024-03-12 20:15:07
cvelist
cvelist
CVE-2024-28112 Cross site scripting on router page in Peering Manager
2024-03-12 19:54:16