An issue was discovered in Italtel Embrace 1.6.4. A stored cross-site scripting (XSS) vulnerability allows authenticated and unauthenticated remote attackers to inject arbitrary web script or HTML into a GET parameter. This reflects/stores the user input without sanitization.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.gruppotim.it/it/footer/red-team.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-02T01:59:49.919Z
Reserved:
Link: CVE-2024-31847
Vulnrichment
Updated: 2024-08-02T01:59:49.919Z
NVD
Status : Modified
Published: 2024-05-21T16:15:26.210
Modified: 2024-11-21T09:14:00.940
Link: CVE-2024-31847
Redhat
No data.