10 matches found
CVE-2024-46080
Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution RCE via the nmzip function...
CVE-2024-46079
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS in projnew.php via the Descricao parameter...
CVE-2024-46079
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS in projnew.php via the Descricao parameter...
CVE-2024-46083
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS. An authenticated user can craft malicious payloads using the messages feature, which allows the injection of malicious code into any user's account on the platform. It is important to note that regular users can trigger...
CVE-2024-46080
Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution RCE via the nmzip function...
CVE-2024-46080
Scriptcase v9.10.023 and earlier are affected by a Remote Code Execution (RCE) vulnerability through the nm_zip function. The CVE-2024-46080 entries across NVD/CVE list and Red Hat/CNNVD/CVELIST references confirm this is a high-severity issue (CVSSv3.1 base score 8.0) and affects the nm_zip path...
CVE-2024-46081
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS. An authenticated user can craft malicious payloads in the To-Do List. The assigned user will trigger a stored XSS, which is particularly dangerous because tasks are assigned to various users on the platform...
CVE-2024-46079
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS in projnew.php via the Descricao parameter...
CVE-2024-46081
Scriptcase v9.10.023 and before is vulnerable to Cross Site Scripting XSS. An authenticated user can craft malicious payloads in the To-Do List. The assigned user will trigger a stored XSS, which is particularly dangerous because tasks are assigned to various users on the platform...
CVE-2024-46080
Scriptcase v9.10.023 and before is vulnerable to Remote Code Execution RCE via the nmzip function...