5 matches found
CVE-2024-10208
An Improper Neutralization of Input During Web Page Generation vulnerability in the APROL Web Portal used in B APROL 4.4-00P5 may allow an authenticated network-based attacker to insert malicious code which is then executed in the context of the user’s browser session...
CVE-2024-10208
creationtimestamp| type| source ---|---|--- 2025-03-25 06:57:07+00:00| seen| https://t.me/cvedetector/21045 2025-04-03 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-093-05...
CVE-2024-10208
An Improper Neutralization of Input During Web Page Generation vulnerability in the APROL Web Portal used in B&R APROL 4.4-00P5 may allow an authenticated network-based attacker to insert malicious code which is then executed in the context of the user’s browser session...
CVE-2024-10208 Cross Site Scripting vulnerability in APROL Web Portal
An Improper Neutralization of Input During Web Page Generation vulnerability in the APROL Web Portal used in B&R APROL 4.4-00P5 may allow an authenticated network-based attacker to insert malicious code which is then executed in the context of the user’s browser session...
CVE-2024-10208
CVE-2024-10208 is a Cross Site Scripting vulnerability in the APROL Web Portal of B&R APROL versions before 4.4-00P5. The issue stems from improper input-neutralization during web page generation, allowing an authenticated network-based attacker to insert malicious code that executes in the conte...