5 matches found
CVE-2024-57773
A cross-site scripting XSS vulnerability in the openSelectManyUserPage?orgid interface of JFinalOA before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2024-57773
A cross-site scripting XSS vulnerability in the openSelectManyUserPage?orgid interface of JFinalOA before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2024-57773
creationtimestamp| type| source ---|---|--- 2025-01-16 17:43:10+00:00| seen| https://infosec.exchange/users/cve/statuses/113839268826253953 2025-01-16 17:55:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1988 2025-01-16 18:16:02+00:00| seen|...
CVE-2024-57773
A cross-site scripting XSS vulnerability in the openSelectManyUserPage?orgid interface of JFinalOA before v2025.01.01 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2024-57773
CVE-2024-57773 affects JFinalOA prior to 2025-01-01, with an XSS vulnerability in the openSelectManyUserPage?orgid interface. The underlying issue is a cross-site scripting flaw that could allow arbitrary web scripts/HTML via crafted payloads. The CVSSv3.1 base score is 4.8 (Medium) with Network ...