CVE-2024-48589 - CERT CVE

  1. CVE-2024-48589

ID CVE-2024-48589
Sažetak Cross Site Scripting vulnerability in Gilnei Moraes phpABook v.0.9 allows a remote attacker to execute arbitrary code via the rol parameter in index.php
Reference
CVSS
Base: 6.3
Impact: 3.4
Exploitability:2.8
Pristup
VektorSloženostAutentikacija
NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Zadnje važnije ažuriranje 11-02-2025 - 15:15
Objavljeno 06-02-2025 - 22:15