CVE-2024-37673

2024-06-2100:00:00

mitre

github.com

tessi docubase

xss vulnerability

remote code execution

filename parameter

7.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.2%

JSON

Cross Site Scripting vulnerability in Tessi Docubase Document Management product 5.x allows a remote attacker to execute arbitrary code via the filename parameter.

References

docubase.com

tessi.com

github.com/MohamedAzizMSALLEMI/Docubase_Security/blob/main/CVE-2024-37673.md