CVE-2024-11071 Improper Access Control In DestinyECM

Permissive Cross-domain Policy with Untrusted Domains vulnerability in local API server of DestinyECM solutionversions described below which is developed and maintained by Cyberdigm may allow Cross-Site Request Forgery CSRF attack, which probabilistically enables JSON Hijacking aka JavaScript...

PT-2025-15184 · Unknown · Destinyecm

Name of the Vulnerable Software and Affected Versions: DestinyECM solution affected versions not specified Description: The issue is related to a Permissive Cross-domain Policy with Untrusted Domains vulnerability in the local API server of the DestinyECM solution. This vulnerability may allow...