CVE-2024-30926 | jeffpiazza DerbyNet 9.0 /inc/kiosks.inc address_for_current_kiosk id/address cross site scripting

Posted by Angelo Barbosa | Apr 5, 2024 | CVE

A vulnerability classified as problematic has been found in jeffpiazza DerbyNet 9.0. This affects the function address_for_current_kiosk of the file /inc/kiosks.inc. The manipulation of the argument id/address leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-30926. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-30926 | jeffpiazza DerbyNet 9.0 /inc/kiosks.inc address_for_current_kiosk id/address cross site scripting

Related Posts

CVE-2024-34096 | Adobe Acrobat Reader up to 20.005.30574/24.002.20736 use after free (apsb24-29)

CVE-2024-5501 | Supreme Modules Lite Plugin up to 2.5.51 on WordPress cross site scripting

CVE-2024-42815 | TP-LINK RE365 V1_180213 /usr/bin/httpd USER_AGENT buffer overflow

CVE-2024-21915 | Rockwell Automation FactoryTalk Service Platform prior 2.74 permission assignment