Lucene search
Veracode Vulnerability DatabaseVERACODE:47394HistoryJun 06, 2024 - 8:38 a.m.
Reflected Cross Site Scripting (XSS)
2024-06-0608:38:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
vulnerability
improper input validation
remote attackers
arbitrary web script
html
htdocs/compta/paiement/card.php
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
6.3
Confidence
High
dolibarr/dolibarr is vulnerable to a Reflected Cross-site Scripting (XSS). The vulnerability is due to improper input validation in htdocs/compta/paiement/card.php, allowing remote attackers to inject arbitrary web script or HTML via the facid parameter.
Related
osv
osv
Reflected Cross-Site Scripting (XSS) in Dolibarr
2024-06-03 21:30:45
CVE-2024-34051
2024-06-03 20:15:00
nvd
nvd
CVE-2024-34051
2024-06-03 20:15:09
cvelist
cvelist
CVE-2024-34051
1976-01-01 00:00:00
vulnrichment
vulnrichment
CVE-2024-34051
1976-01-01 00:00:00
github
github
Reflected Cross-Site Scripting (XSS) in Dolibarr
2024-06-03 21:30:45
ubuntucve
ubuntucve
CVE-2024-34051
2024-06-03 00:00:00
cve
cve
CVE-2024-34051
2024-06-03 20:15:09
CVSS3
4.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
6.3
Confidence
High
Related for VERACODE:47394