4 matches found
CVE-2024-34058
The WebTop package for NethServer 7 and 8 allows stored XSS for example, via the Subject field if an e-mail message...
CVE-2024-34058
The WebTop package for NethServer 7 and 8 allows stored XSS for example, via the Subject field if an e-mail message...
CVE-2024-34058
The WebTop package for NethServer 7 and 8 allows stored XSS for example, via the Subject field if an e-mail message...
CVE-2024-34058
The CVE-2024-34058 entry concerns stored XSS in the WebTop package for NethServer 7 and 8. Affected component: WebTop (Sonicle) integrated with NethServer; root cause: insufficient input sanitization/output escaping allows payloads (e.g., in the Email Subject) to be stored and executed in the fro...