CVE-2024-8750
Cross-site Scripting vulnerability in Idoit pro
Cross-site Scripting (XSS) vulnerability in idoit pro version 28. This vulnerability allows an attacker to retrieve session details of an authenticated user due to lack of proper sanitization of the following parameters (id,lang,mNavID,name,pID,treeNode,type,view).
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Productos afectados
Synetics · Idoit pro¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →