4 matches found
Temenos T24 R20 - Cross-Site Scripting
Temenos T24 release 20 contains a reflected cross-site scripting vulnerability via the routineName parameter at genrequest.jsp. An attacker can inject arbitrary script in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based...
CVE-2023-46948
A reflected Cross-Site Scripting XSS vulnerability was found on Temenos T24 Browser R19.40 that enables a remote attacker to execute arbitrary JavaScript code via the skin parameter in the about.jsp and genrequest.jsp components...
CVE-2023-46948
A reflected Cross-Site Scripting XSS vulnerability was found on Temenos T24 Browser R19.40 that enables a remote attacker to execute arbitrary JavaScript code via the skin parameter in the about.jsp and genrequest.jsp components...
CVE-2023-46948
Temenos T24 Browser R19.40 is affected by a reflected XSS via the skin parameter in about.jsp and genrequest.jsp. The vulnerability lets a remote attacker execute arbitrary JavaScript in the context of the user; CVSS v3.1 base score 5.4 (MEDIUM) with Network attack vector and user interaction req...