CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2024/09/26 10:15 p.m.•3 views

CVE-2024-40508

Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMConference.asmx function...

7.3CVSS5.8AI score0.07769EPSS

Exploits1References2

NVD•added 2024/09/26 10:15 p.m.•11 views

CVE-2024-40508

Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMConference.asmx function...

7.3CVSS0.07769EPSS

Exploits1References2

CVE•added 2024/09/26 12:0 a.m.•45 views

CVE-2024-40508

CVE-2024-40508 is an XSS flaw in openPetra v.2023.02 affecting the serverMConference.asmx function. The impact is sensitive information disclosure by a remote attacker, with CVSS v3.1 base score 7.3 (HIGH) and network attack vector, no user interaction required. The root cause is an XSS vulnerabi...

7.3CVSS6.1AI score0.07769EPSS

Exploits1References2Affected Software1

CNNVD•added 2024/09/26 12:0 a.m.•1 views

OpenPetra 安全漏洞

OpenPetra is a free management software from OpenPetra, Inc. A security vulnerability exists in openPetra version 2023.02, which originates in the serverMConference.asmx function and could allow a remote attacker to obtain sensitive information...

7.3CVSS6.6AI score0.07769EPSS

Exploits1References3

Cvelist•added 2024/09/26 12:0 a.m.•10 views

CVE-2024-40508

Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMConference.asmx function...

0.07769EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by