CVE-2024-34582 | Sunhillo SureLine up to 8.10.0 on RICI 5000 Forgot Password cgi/usrPasswd.cgi userid_change cross site scripting

Inserito da Angelo Barbosa | Mag 16, 2024 | CVE

A vulnerability was found in Sunhillo SureLine up to 8.10.0 on RICI 5000 and classified as problematic. Affected by this issue is some unknown functionality of the file cgi/usrPasswd.cgi of the component Forgot Password Handler. The manipulation of the argument userid_change leads to cross site scripting.

This vulnerability is handled as CVE-2024-34582. The attack may be launched remotely. There is no exploit available.

CVE-2024-34582 | Sunhillo SureLine up to 8.10.0 on RICI 5000 Forgot Password cgi/usrPasswd.cgi userid_change cross site scripting

Post correlati

CVE-2023-6687 | Elastic Agent up to 7.17.15/8.11.2 HTTP Status Code log file

CVE-2023-43122 | Samsung Exynos up to 2200 Bootloader information disclosure

CVE-2024-31370 | CodeIsAwesome AIKit Plugin up to 4.14.1 on WordPress sql injection

CVE-2023-50253 | labring laf up to 1.0.0-beta.13 information disclosure