CVE-2024-4737 | Campcodes Legal Case Management System 1.0 /admin/vendor company_name/mobile cross site scripting

Inserito da Angelo Barbosa | Mag 10, 2024 | CVE

A vulnerability was found in Campcodes Legal Case Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/vendor. The manipulation of the argument company_name/mobile leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-4737. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2024-4737 | Campcodes Legal Case Management System 1.0 /admin/vendor company_name/mobile cross site scripting

Post correlati

CVE-2024-39950 | Dahua NVR4XXX/IPC-HX8XXX Data Packet initialization

CVE-2024-8548 | cagdasdag KB Support Plugin up to 1.6.6 on WordPress authorization

CVE-2024-28233 | JupyterHub up to 4.0.x cross site scripting

CVE-2024-22238 | VMware Aria Operations for Networks prior 6.12 cross site scripting (VMSA-2024-0002)