Lucene search
K

4 matches found

NVD
NVD
added 2025/04/14 12:15 p.m.20 views

CVE-2024-49708

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Stored XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for setting delivery address with a malicious script, what causes the script to run in user's context. This vulnerability...

5.4CVSS0.00198EPSS
Exploits0References2
CVE
CVE
added 2025/04/14 12:6 p.m.75 views

CVE-2024-49708

No public technical details for CVE-2024-49708 are provided in the connected documents. The Initial Description notes a Stored XSS in Internet Starter (SoftCOM iKSORIS) with patch in 79.0, but no further specifics are supplied.

5.4CVSS5.6AI score0.00198EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/14 12:6 p.m.12 views

CVE-2024-49708 XSS in iKSORIS

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Stored XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for setting delivery address with a malicious script, what causes the script to run in user's context. This vulnerability...

5.1CVSS5.6AI score0.00198EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/14 12:6 p.m.20 views

CVE-2024-49708 XSS in iKSORIS

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Stored XSS Cross-site Scripting attacks. An attacker might trick a user into filling a form designed for setting delivery address with a malicious script, what causes the script to run in user's context. This vulnerability...

5.1CVSS0.00198EPSS
Exploits0References2
Rows per page
Query Builder