CVE-2024-9276 | TMsoft MyAuth Gateway 3 /index.php console/nocache/cmd cross site scripting

Posted by Angelo Barbosa | Sep 27, 2024 | CVE

A vulnerability classified as problematic has been found in TMsoft MyAuth Gateway 3. Affected is an unknown function of the file /index.php. The manipulation of the argument console/nocache/cmd leads to cross site scripting.

This vulnerability is traded as CVE-2024-9276. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-9276 | TMsoft MyAuth Gateway 3 /index.php console/nocache/cmd cross site scripting

Related Posts

CVE-2024-5838 | Google Chrome prior 126.0.6478.54 V8 type confusion (ID 342522)

CVE-2024-33933 | Brainstorm Force & Nikhil Chavan Elementor Plugin up to 1.6.35 on WordPress cross site scripting

CVE-2024-31206 | dectalk-tts prior 1.0.1 HTTP Request cleartext transmission

CVE-2024-2067 | SourceCodester Computer Inventory System 1.0 delete-computer.php computer sql injection