CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-41516

A Reflected cross-site scripting (XSS) vulnerability in "ccHandler.aspx" CADClick <= 1.11.0 allows remote attackers to inject arbitrary web script or HTML via the "bomid" parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.0%

CVSS Severity

CVSS v3 Score 5.4

References

http://cadclick.de/
http://kimweb.de/
https://piuswalter.de/blog/multiple-critical-vulnerabilities-in-cadclick/

Products affected by CVE-2024-41516

4pace » Cadclick » Version: 1.11.0

cpe:2.3:a:4pace:cadclick:1.11.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-41516

Products

Pricing

Contact Us