Lucene search
K

4 matches found

NVD
NVD
added 2024/12/09 4:15 a.m.17 views

CVE-2024-53285

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in DDNS Record functionality in Synology Router Manager SRM before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to read or write specific files containing non-sensitiv...

5.9CVSS0.0026EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/09 3:38 a.m.11 views

CVE-2024-53285

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in DDNS Record functionality in Synology Router Manager SRM before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to read or write specific files containing non-sensitiv...

5.9CVSS6AI score0.0026EPSS
Exploits0References1
CVE
CVE
added 2024/12/09 3:38 a.m.62 views

CVE-2024-53285

The CVE-2024-53285 flaw affects Synology Router Manager (SRM) versions prior to 1.3.1-9346-10, specifically within the DDNS Record component. The root cause is improper neutralization of input during web page generation, enabling Cross-site Scripting (XSS) by an administrator with full rights. Im...

5.9CVSS6AI score0.0026EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/12/09 3:38 a.m.21 views

CVE-2024-53285

Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in DDNS Record functionality in Synology Router Manager SRM before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to read or write specific files containing non-sensitiv...

5.9CVSS0.0026EPSS
Exploits0References1
Rows per page
Query Builder