CVE-2024-3791 | White Bear Solutions WBSAirback 21.02.04 URL SystemConfiguration name/free memory limit/type/password cross site scripting

Inserito da Angelo Barbosa | Apr 15, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in White Bear Solutions WBSAirback 21.02.04. Affected by this issue is some unknown functionality of the file /admin/SystemConfiguration of the component URL Handler. The manipulation of the argument name/free memory limit/type/password leads to cross site scripting.

This vulnerability is handled as CVE-2024-3791. The attack may be launched remotely. There is no exploit available.

CVE-2024-3791 | White Bear Solutions WBSAirback 21.02.04 URL SystemConfiguration name/free memory limit/type/password cross site scripting

Post correlati

CVE-2024-29447 | ROS2 Humble Hawksbill default credentials

CVE-2021-47179 | Linux Kernel up to 5.12.8 NFSv4 pnfs_mark_matching_lsegs_return pnfs_layout_range null pointer dereference

CVE-2023-50778 | PaaSLane Estimate Plugin up to 1.0.4 on Jenkins cross-site request forgery

CVE-2023-52747 | Linux Kernel up to 4.19.272/5.4.231/5.10.167/5.15.93/6.1.11 hfi1 memory leak