Lucene search
K

4 matches found

Circl
Circl
added 2024/01/26 11:27 a.m.5 views

CVE-2024-23876

creationtimestamp| type| source ---|---|--- 2024-01-26 11:27:00+00:00| seen| https://t.me/ctinow/174155 2024-02-19 14:21:42+00:00| seen| https://t.me/ctinow/187680...

8.2CVSS6.1AI score0.00437EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/01/26 9:13 a.m.3 views

CVE-2024-23876 Cross-Site Scripting (XSS) vulnerability in Cups Easy

A vulnerability has been reported in Cups Easy Purchase & Inventory, version 1.0, whereby user-controlled inputs are not sufficiently encoded, resulting in a Cross-Site Scripting XSS vulnerability via /cupseasylive/taxstructurecreate.php, in the description parameter. Exploitation of this...

8.2CVSS6.3AI score0.00437EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/26 9:13 a.m.21 views

CVE-2024-23876 Cross-Site Scripting (XSS) vulnerability in Cups Easy

A vulnerability has been reported in Cups Easy Purchase & Inventory, version 1.0, whereby user-controlled inputs are not sufficiently encoded, resulting in a Cross-Site Scripting XSS vulnerability via /cupseasylive/taxstructurecreate.php, in the description parameter. Exploitation of this...

8.2CVSS7.2AI score0.00437EPSS
Exploits0References1
CVE
CVE
added 2024/01/26 9:13 a.m.50 views

CVE-2024-23876

CVE-2024-23876 affects Cups Easy (Purchase & Inventory) version 1.0. The vulnerability is a Cross‑Site Scripting (XSS) flaw caused by insufficient escaping/encoding of the input in the description parameter of the endpoint /cupseasylive/taxstructurecreate.php . An attacker could craft a URL that,...

8.2CVSS5.8AI score0.00437EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder