4 matches found
CVE-2024-6877
The CVE describes a Reflected Cross-Site Scripting (XSS) vulnerability in Eliz Software Panel (Eliz Software Panel). Affected are versions prior to 2.3.24, where improper neutralization of input during web page generation enables reflection-based XSS. The issue’s technical context is the failure ...
CVE-2024-5959
CVE-2024-5959: Stored XSS in Eliz Software Panel due to improper neutralization of inputs during web page generation. Affected: Eliz Software Panel prior to version 2.3.24. Exploit details are not provided in the documents. Remediation: upgrade to version 2.3.24 or later to patch the vulnerabilit...
CVE-2024-5958
CVE-2024-5958 affects the Eliz Software Panel. Connected sources confirm an SQL Injection vulnerability due to improper neutralization of special elements, enabling command line execution . The issue impacts Panel versions prior to 2.3.24 . A practical remediation is to upgrade to 2.3.24 or later...
CVE-2024-5960
The CVE-2024-5960 entry concerns Eliz Software Panel prior to version 2.3.24, where passwords are stored in plaintext. Affected component is the Eliz Software Panel; root cause is plaintext password storage that permits use of known domain credentials. The reported impact is high confidentiality,...