3 matches found
CVE-2024-30926
Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary code via the ./inc/kiosks.inc component...
PT-2024-23676 · Derbynet · Derbynet
Name of the Vulnerable Software and Affected Versions: DerbyNet versions 9.0 and below Description: The issue allows attackers to execute arbitrary code via the ./inc/kiosks.inc component. This is a Cross Site Scripting vulnerability. Recommendations: For DerbyNet versions 9.0 and below, consider...
DerbyNet 安全漏洞
DerbyNet is a simple code for a match broadcasting program. A cross-site scripting vulnerability exists in the DerbyNet . /inc/kiosks.inc script suffers from a cross-site scripting vulnerability that can be exploited by an attacker to steal a victim's cookie-based authentication credentials...