3 matches found
CVE-2022-24654
Authenticated stored cross-site scripting XSS vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows attackers to inject JavaScript code through a crafted payload...
CVE-2022-24654
Authenticated stored cross-site scripting XSS vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows attackers to inject JavaScript code through a crafted payload...
CVE-2022-24654
Intelbras ATA 200 firmware 74.19.10.21 is affected by an authenticated stored XSS vulnerability in the Field Server Address field. The issue allows injection of JavaScript via a crafted payload after login (PoC exists in the linked materials). Exploitation requires authentication, and the vulnera...