CVE-2024-1707 | GARO WALLBOX GLB+ T2EV7 0.5 Software Update /index.jsp#settings Reference cross site scripting

A vulnerability, which was classified as problematic, was found in GARO WALLBOX GLB+ T2EV7 0.5. This affects an unknown part of the file /index.jsp#settings of the component Software Update Handler. The manipulation of the argument Reference leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-1707. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-1707 | GARO WALLBOX GLB+ T2EV7 0.5 Software Update /index.jsp#settings Reference cross site scripting

Post correlati

CVE-2024-4419 | Fetch JFT Plugin up to 1.8.3 on WordPress cross site scripting

CVE-2024-6250 | parisneo lollms-webui up to 9.6 lollms_advanced.py open_file absolute path traversal

CVE-2024-9025 | Sight Plugin up to 1.1.2 on WordPress handler_post_title authorization

CVE-2024-10415 | code-projects Blood Bank Management System 1.0 /file/accept.php reqid sql injection