CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-1026

A vulnerability was found in Cogites eReserv 7.7.58 and classified as problematic. This issue affects some unknown processing of the file front/admin/config.php. The manipulation of the argument id with the input %22%3E%3Cscript%3Ealert(%27XSS%27)%3C/script%3E leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-252293 was assigned to this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.4%

CVSS Severity

CVSS v3 Score 3.5

CVSS v2 Score 4.0

References

https://vuldb.com/?ctiid.252293
https://vuldb.com/?id.252293
https://vuldb.com/?ctiid.252293
https://vuldb.com/?id.252293

Products affected by CVE-2024-1026

Cogites » Ereserv » Version: 7.7.58

cpe:2.3:a:cogites:ereserv:7.7.58

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-1026

Products

Pricing

Contact Us