Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/04/16 2:43 p.m.10 views

CVE-2024-10090

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for adding users with a malicious script, what causes the script to run in user's context. This vulnerability has been...

5.1CVSS5.4AI score0.0023EPSS
Exploits0References1
Circl
Circl
added 2025/04/14 12:33 p.m.10 views

CVE-2024-10090

creationtimestamp| type| source ---|---|--- 2025-04-14 12:33:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmrl33sbsz24 2025-04-14 17:10:55+00:00| seen| https://t.me/cvedetector/22855...

6.1CVSS5.3AI score0.0023EPSS
Exploits0References2
NVD
NVD
added 2025/04/14 12:15 p.m.10 views

CVE-2024-10090

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for adding users with a malicious script, what causes the script to run in user's context. This vulnerability has been...

6.1CVSS0.0023EPSS
Exploits0References2
CVE
CVE
added 2025/04/14 12:4 p.m.72 views

CVE-2024-10090

CVE-2024-10090 affects Internet Starter, a module of SoftCOM iKSORIS. The flaw is a Reflected XSS in the user-creation form, allowing injected scripts to run in the victim’s browser context. The entry provides a standard CVSSv3.1 base score of 6.1 (MEDIUM) with network attack vector, no privilege...

6.1CVSS5.8AI score0.0023EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/14 12:4 p.m.13 views

CVE-2024-10090 XSS in iKSORIS

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for adding users with a malicious script, what causes the script to run in user's context. This vulnerability has been...

5.1CVSS5.8AI score0.0023EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/14 12:4 p.m.18 views

CVE-2024-10090 XSS in iKSORIS

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for adding users with a malicious script, what causes the script to run in user's context. This vulnerability has been...

5.1CVSS0.0023EPSS
Exploits0References2
Rows per page
Query Builder