CVE-2024-8411
Last modified
CVE-2024-8411 is a low-severity vulnerability rated 2/10 on the CVSS scale. A vulnerability was determined in ABCD ABCD2 up to 2.2.0-beta-1. Impacted is an unknown function of the file /buscar_integrada.php. EPSS estimates a 0.49% chance of exploitation in the next 30 days.
Description
A vulnerability was determined in ABCD ABCD2 up to 2.2.0-beta-1. Impacted is an unknown function of the file /buscar_integrada.php. Executing a manipulation of the argument Sub_Expresion can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be utilized. The developer explains, that "this script has been completely redesigned after this version".
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Abcd-Community | Abcd | 2.2.0 | Alpha |
References
- https://vuldb.com/?ctiid.276491Permissions Required
- https://vuldb.com/?id.276491Permissions Required, Third Party Advisory
- https://vuldb.com/?submit.398843Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2024-8411?
How severe is CVE-2024-8411?
How do I fix CVE-2024-8411?
Are you affected by CVE-2024-8411?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST