3 matches found
CVE-2024-8651
CVE-2024-8651 — NetCat CMS: user enumeration involves a vulnerability where an attacker can send a specially crafted HTTP request to check whether a user exists in the system. Affected are NetCat CMS versions around 6.4.0.24126.2 up to 6.4.0.24247, with a patch available starting from 6.4.0.24248...
CVE-2024-8652
CVE-2024-8652 : NetCat CMS is affected by a reflected cross-site scripting vulnerability in the openstat module. Affected versions are 6.4.0.24126.2 through 6.4.0.24247. The issue allows an attacker to execute JavaScript in a user’s browser when they visit a specifically crafted path. Exploitatio...
CVE-2024-8653
CVE-2024-8653 affects NetCat CMS with multiple reflected cross-site scripting vulnerabilities in the netshop module. Affected versions include 6.4.0.24126.2 (and potentially others); a patch is available in versions 6.4.0.24248 and later. The vulnerability allows an attacker to execute JavaScript...