6 matches found
CVE-2024-10090
Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for adding users with a malicious script, what causes the script to run in user's context. This vulnerability has been...
CVE-2024-10090
creationtimestamp| type| source ---|---|--- 2025-04-14 12:33:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmrl33sbsz24 2025-04-14 17:10:55+00:00| seen| https://t.me/cvedetector/22855...
CVE-2024-10090
Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for adding users with a malicious script, what causes the script to run in user's context. This vulnerability has been...
CVE-2024-10090
CVE-2024-10090 affects Internet Starter, a module of SoftCOM iKSORIS. The flaw is a Reflected XSS in the user-creation form, allowing injected scripts to run in the victim’s browser context. The entry provides a standard CVSSv3.1 base score of 6.1 (MEDIUM) with network attack vector, no privilege...
CVE-2024-10090 XSS in iKSORIS
Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for adding users with a malicious script, what causes the script to run in user's context. This vulnerability has been...
CVE-2024-10090 XSS in iKSORIS
Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for adding users with a malicious script, what causes the script to run in user's context. This vulnerability has been...