CVE-2024-3654 - CERT CVE
ID CVE-2024-3654
Sažetak An XSS vulnerability has been found in Teimas Global's Teixo, version 1.42.42-stable. This vulnerability could allow an attacker to send a specially crafted JavaScript payload via the "seconds" parameter in the program's URL, resulting in a possible takeover of a registered user's session.
Reference
CVSS
Base: 6.3
Impact: 3.4
Exploitability:2.8
Pristup
VektorSloženostAutentikacija
NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Zadnje važnije ažuriranje 19-04-2024 - 16:19
Objavljeno 19-04-2024 - 13:15