Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:17 a.m.7 views

CVE-2024-28722

Cross Site Scripting vulnerability in Innovaphone myPBX v.14r1, v.13r3, v.12r2 allows a remote attacker to execute arbitrary code via the query parameter to the /CMD0/xmlmodes.xml endpoint...

6.3CVSS7.3AI score0.00459EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2024/04/22 1:15 a.m.2 views

CVE-2024-28722

Cross Site Scripting vulnerability in Innovaphone myPBX v.14r1, v.13r3, v.12r2 allows a remote attacker to execute arbitrary code via the query parameter to the /CMD0/xmlmodes.xml endpoint...

6.3CVSS6.3AI score0.00459EPSS
Exploits0References4
NVD
NVD
added 2024/04/22 1:15 a.m.22 views

CVE-2024-28722

Cross Site Scripting vulnerability in Innovaphone myPBX v.14r1, v.13r3, v.12r2 allows a remote attacker to execute arbitrary code via the query parameter to the /CMD0/xmlmodes.xml endpoint...

6.3CVSS7AI score0.00459EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/22 12:0 a.m.22 views

CVE-2024-28722

Cross Site Scripting vulnerability in Innovaphone myPBX v.14r1, v.13r3, v.12r2 allows a remote attacker to execute arbitrary code via the query parameter to the /CMD0/xmlmodes.xml endpoint...

7.3AI score0.00459EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/22 12:0 a.m.32 views

CVE-2024-28722

Cross Site Scripting vulnerability in Innovaphone myPBX v.14r1, v.13r3, v.12r2 allows a remote attacker to execute arbitrary code via the query parameter to the /CMD0/xmlmodes.xml endpoint...

7.2AI score0.00459EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/04/22 12:0 a.m.3 views

Innovaphone myPBX 安全漏洞

Innovaphone myPBX is an application from Innovaphone, Inc. Designed to help cell phone users with everyday tasks. A security vulnerability exists in Innovaphone myPBX version v.14r1, v.13r3, and v.12r2. A remote attacker can exploit this vulnerability to execute arbitrary code via the query...

6.3CVSS7.8AI score0.00459EPSS
Exploits0References4
CVE
CVE
added 2024/04/22 12:0 a.m.54 views

CVE-2024-28722

CVE-2024-28722 affects Innovaphone myPBX v12r2–14r1. A cross-site scripting flaw allows a remote attacker to trigger arbitrary code execution via the query parameter to /CMD0/xml_modes.xml. Impact notes from sources indicate web UI/scriptable context with potential credential concerns in related ...

6.3CVSS7.3AI score0.00459EPSS
Exploits0References1
Rows per page
Query Builder