CVE-2024-7785

Reflected XSS in Ece Software's Electronic Ticket System

CVSS 9.3 CRITICALEPSS 0.4%CWE-79

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ece Software Electronic Ticket System allows Reflected XSS, Cross-Site Scripting (XSS). This issue affects Electronic Ticket System: before 2024.08.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:N/SA:N

Productos afectados

Ece Software · Electronic Ticket System

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1506 https://www.usom.gov.tr/bildirim/tr-24-1506