| ID | CVE-2024-28734 | ||||||
| Sažetak | Cross Site Scripting vulnerability in Unit4 Financials by Coda prior to 2023Q4 allows a remote attacker to run arbitrary code via a crafted GET request using the cols parameter. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L | ||||||
| Zadnje važnije ažuriranje | 03-07-2024 - 01:51 | ||||||
| Objavljeno | 19-03-2024 - 14:15 |

