Lucene search
+L

4 matches found

circl
circl
added 2024/01/26 11:27 a.m.9 views

CVE-2024-23876

creationtimestamp| type| source ---|---|--- 2024-01-26 11:27:00+00:00| seen| https://t.me/ctinow/174155 2024-02-19 14:21:42+00:00| seen| https://t.me/ctinow/187680...

8.2CVSS6.1AI score0.00437EPSS
Exploits0References2
cvelist
cvelist
added 2024/01/26 9:13 a.m.26 views

CVE-2024-23876 Cross-Site Scripting (XSS) vulnerability in Cups Easy

A vulnerability has been reported in Cups Easy Purchase & Inventory, version 1.0, whereby user-controlled inputs are not sufficiently encoded, resulting in a Cross-Site Scripting XSS vulnerability via /cupseasylive/taxstructurecreate.php, in the description parameter. Exploitation of this...

8.2CVSS7.2AI score0.00437EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/01/26 9:13 a.m.3 views

CVE-2024-23876 Cross-Site Scripting (XSS) vulnerability in Cups Easy

A vulnerability has been reported in Cups Easy Purchase & Inventory, version 1.0, whereby user-controlled inputs are not sufficiently encoded, resulting in a Cross-Site Scripting XSS vulnerability via /cupseasylive/taxstructurecreate.php, in the description parameter. Exploitation of this...

8.2CVSS6.3AI score0.00437EPSS
Exploits0References1
cve
cve
added 2024/01/26 9:13 a.m.51 views

CVE-2024-23876

CVE-2024-23876 affects Cups Easy (Purchase & Inventory) version 1.0. The vulnerability is a Cross‑Site Scripting (XSS) flaw caused by insufficient escaping/encoding of the input in the description parameter of the endpoint /cupseasylive/taxstructurecreate.php . An attacker could craft a URL that,...

8.2CVSS5.8AI score0.00437EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder