Cross Site Scripting vulnerability in EginDemirbilek NorthStar C2 v1 allows a remote attacker to execute arbitrary code via the login.php component.

Project Subscriptions

Vendors Products
Engindemirbilek Subscribe
Northstarc2 Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 27 Feb 2026 04:15:00 +0000

Type Values Removed Values Added
First Time appeared Engindemirbilek
Engindemirbilek northstarc2
CPEs cpe:2.3:a:engindemirbilek:northstarc2:*:*:*:*:*:*:*:*
Vendors & Products Engindemirbilek
Engindemirbilek northstarc2
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 15 Aug 2024 16:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-79
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}


Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-15T14:47:19.762Z

Reserved: 2024-03-08T00:00:00.000Z

Link: CVE-2024-28741

cve-icon Vulnrichment

Updated: 2024-08-02T00:56:58.051Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-04-06T19:15:07.247

Modified: 2024-11-21T09:06:51.950

Link: CVE-2024-28741

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses