Vulnerability Details CVE-2024-30920
Cross Site Scripting vulnerability in DerbyNet v9.0 and below allows a remote attacker to execute arbitrary code via the render-document.php component.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.3%
CVSS Severity
CVSS v3 Score 7.4
References
Products affected by CVE-2024-30920
-
cpe:2.3:a:derbynet:derbynet:1.0
-
cpe:2.3:a:derbynet:derbynet:2.0
-
cpe:2.3:a:derbynet:derbynet:3.0
-
cpe:2.3:a:derbynet:derbynet:4.0
-
cpe:2.3:a:derbynet:derbynet:5.0
-
cpe:2.3:a:derbynet:derbynet:6.0
-
cpe:2.3:a:derbynet:derbynet:7.0
-
cpe:2.3:a:derbynet:derbynet:8.0
-
cpe:2.3:a:derbynet:derbynet:9.0