CVE-2024-6059 | Ingenico Estate Manager 2023 News Feed /emgui/rest/ums/messages message cross site scripting

Inserito da Angelo Barbosa | Giu 17, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Ingenico Estate Manager 2023. This issue affects some unknown processing of the file /emgui/rest/ums/messages of the component News Feed. The manipulation of the argument message leads to cross site scripting.

The identification of this vulnerability is CVE-2024-6059. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-6059 | Ingenico Estate Manager 2023 News Feed /emgui/rest/ums/messages message cross site scripting

Post correlati

CVE-2024-44552 | Tenda AX1806 1.0.0.1 formGetIptv adv.iptv.stballvlans stack-based overflow

CVE-2024-1941 | Delta Electronics CNCSoft-B up to 1.0.0.4 stack-based overflow (icsa-24-060-01)

CVE-2024-33562 | 8theme XStore Plugin up to 9.3.5 on WordPress cross site scripting

CVE-2024-30593 | Tenda FH1202 1.2.0.14(408) /goform/SetOnlineDevName formSetDeviceName deviceName stack-based overflow