Lucene search

MitreVULNRICHMENT:CVE-2020-24061

HistorySep 12, 2024 - 12:00 a.m.

CVE-2020-24061

2024-09-1200:00:00

mitre

github.com

cross site scripting

vulnerability

kasda kw5515

AI Score

6.6

Confidence

High

EPSS

Percentile

9.6%

SSVC

Exploitation

poc

Automatable

Technical Impact

partial

JSON

Cross Site Scripting (XSS) Vulnerability in Firewall menu in Control Panel in KASDA KW5515 version 4.3.1.0, allows attackers to execute arbitrary code and steal cookies via a crafted script

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:kasda:kw5515:4.3.1.0:*:*:*:*:*:*:*"
    ],
    "vendor": "kasda",
    "product": "kw5515",
    "versions": [
      {
        "status": "affected",
        "version": "4.3.1.0"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

github.com/0xadik/CVEs/tree/main/CVE-2020-24061

medium.com/%40sadikul.islam/kasda-kw5515-cross-site-scripting-html-injection-e6cb9f65ae89?sk=5e1ea8e1cba8dbeaff7f9cd710808354