CVE-2024-6370 | LabVantage LIMS 2017 POST Request bulletinbody cross site scripting

Inserito da Angelo Barbosa | Giu 27, 2024 | CVE

A vulnerability classified as problematic was found in LabVantage LIMS 2017. Affected by this vulnerability is an unknown functionality of the file /labvantage/rc?command=file&file=WEB-OPAL/pagetypes/bulletins/sendbulletin.jsp of the component POST Request Handler. The manipulation of the argument bulletinbody leads to cross site scripting.

This vulnerability is known as CVE-2024-6370. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-6370 | LabVantage LIMS 2017 POST Request bulletinbody cross site scripting

Post correlati

CVE-2024-6022 | ContentLock Plugin up to 1.0.3 on WordPress Setting cross-site request forgery

CVE-2024-5060 | LottieFiles Plugin up to 1.10.9 on WordPress cross site scripting

CVE-2024-27950 | sirv Image Optimizer, Resizer and CDN Plugin up to 7.2.0 on WordPress authorization

CVE-2024-22276 | VMware Cloud Director Object Storage Extension 2.x/3.0 Web Proxy Server Logging information disclosure