Lucene search
+L

5 matches found

Circl
Circl
added 2024/10/23 2:37 p.m.4 views

CVE-2024-10289

creationtimestamp| type| source ---|---|--- 2024-10-23 14:37:06+00:00| seen| https://t.me/HackerArsenal/600 2024-10-23 14:52:48+00:00| seen| https://t.me/cvedetector/8685...

6.1CVSS4.8AI score0.00278EPSS
Exploits0References2
NVD
NVD
added 2024/10/23 12:15 p.m.23 views

CVE-2024-10289

Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ManageSubscription, parameter MSubListName...

6.1CVSS0.00278EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/23 12:3 p.m.29 views

CVE-2024-10289 Cross-Site Scripting (XSS) vulnerability in LocalServer

Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ManageSubscription, parameter MSubListName...

6.1CVSS0.00278EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/23 12:3 p.m.20 views

CVE-2024-10289 Cross-Site Scripting (XSS) vulnerability in LocalServer

Cross-Site Scripting XSS vulnerability affecting LocalServer 1.0.9 that could allow a remote user to send a specially crafted query to an authenticated user and steal their session details through /mlss/ManageSubscription, parameter MSubListName...

6.1CVSS5.9AI score0.00278EPSS
Exploits0References1
CVE
CVE
added 2024/10/23 12:3 p.m.50 views

CVE-2024-10289

This CVE affects LocalServer 1.0.9 and involves a Cross-Site Scripting (XSS) flaw in the /mlss/ManageSubscription endpoint, specifically exploiting the MSubListName parameter to potentially steal session details from authenticated users. The connected PT-2024-16161 entry confirms the vulnerabilit...

6.1CVSS5.9AI score0.00278EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder