CVE-2024-55546
Dec. 10, 2024, 8:15 p.m.
Tags
Product(s) Impacted
IAP-420
- 2.01e and below
Description
Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting (XSS).This issue affects IAP-420 version 2.01e and below.
Weaknesses
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
CWE ID: 79Date
Published: Dec. 10, 2024, 5:15 p.m.
Last Modified: Dec. 10, 2024, 8:15 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
office@cyberdanube.com
References
https://cyberdanube.com/
office@cyberdanube.com
https://cyberdanube.com/
134c704f-9b21-4f2e-91b3-4a467353bcc0