CVE-2024-7874 | Tungsten Automation TotalAgility up to 7.9.0.25.0.954 ScanFront.aspx mfpConnectionId cross site scripting

Inserito da Angelo Barbosa | Dic 7, 2024 | CVE

A vulnerability classified as problematic was found in Tungsten Automation TotalAgility up to 7.9.0.25.0.954. This vulnerability affects unknown code of the file /TotalAgility/Kofax/BrowserDevice/ScanFront.aspx. The manipulation of the argument mfpConnectionId leads to cross site scripting.

This vulnerability was named CVE-2024-7874. The attack can be initiated remotely. There is no exploit available.

CVE-2024-7874 | Tungsten Automation TotalAgility up to 7.9.0.25.0.954 ScanFront.aspx mfpConnectionId cross site scripting

Post correlati

CVE-2024-50205 | Linux Kernel up to 5.15.169/6.1.114/6.6.58/6.11.5 ALSA apply_constraint_to_size divide by zero

CVE-2024-5046 | SourceCodester Online Examination System 1.0 registeracc.php email sql injection

VDB-278461 | Microsoft Copilot Studio Cloud Console Private API Service insufficient logging

CVE-2023-51219 | KakaoTalk 10.4.3 HTTP Request Header cross site scripting