| ID |
CVE-2024-10087
|
| Sažetak |
Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS (Cross-site Scripting) attacks. An attacker might craft a link containing a malicious script, which then gets directly embedded in references to other resources, what causes the script to run in user's context multiple times.
This vulnerability has been patched in version 79.0 |
| Reference |
|
| CVSS |
| Base: | 5.4 |
| Impact: | 2.7 |
| Exploitability: | 2.3 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| NETWORK |
LOW |
LOW |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| LOW |
LOW |
NONE |
|
| CVSS vektor |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N |
| Zadnje važnije ažuriranje |
28-10-2025 - 16:52 |
| Objavljeno |
14-04-2025 - 12:15 |
