6 matches found
CVE-2024-50800
Cross Site Scripting vulnerability in M2000 Smart4Web before v.5.020241004 allows a remote attacker to execute arbitrary code via the error parameter in URL...
CVE-2024-50800
Cross Site Scripting vulnerability in M2000 Smart4Web before v.5.020241004 allows a remote attacker to execute arbitrary code via the error parameter in URL...
CVE-2024-50800
Cross Site Scripting vulnerability in M2000 Smart4Web before v.5.020241004 allows a remote attacker to execute arbitrary code via the error parameter in URL...
CVE-2024-50800
Cross Site Scripting vulnerability in M2000 Smart4Web before v.5.020241004 allows a remote attacker to execute arbitrary code via the error parameter in URL...
CVE-2024-50800
CVE-2024-50800 affects M2000 Smart4Web prior to v5.020241004. The issue is a Cross Site Scripting vulnerability in which an attacker can execute arbitrary code via the URL’s error parameter, remotely. The base metrics indicate a network-exposed, low-privilege, user-interaction-required, partial i...
PT-2024-34411 · Unknown · M2000 Smart4Web
Name of the Vulnerable Software and Affected Versions: M2000 Smart4Web versions prior to 5.020241004 Description: The issue allows a remote attacker to execute arbitrary code via the error parameter in the URL. This is a Cross Site Scripting vulnerability, which can lead to the execution of...