Sites managed in S@M CMS (Concept Intermedia) might be vulnerable to Reflected XSS via including scripts in one of GET header parameters.
Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: CERT-PL
Published: 2024-06-28T12:44:38.927Z
Updated: 2024-08-01T20:20:02.531Z
Reserved: 2024-04-15T11:03:30.990Z
Link: CVE-2024-3801
Vulnrichment
Updated: 2024-08-01T20:20:02.531Z
NVD
Status : Analyzed
Published: 2024-06-28T13:15:03.157
Modified: 2024-07-03T14:36:52.797
Link: CVE-2024-3801
Redhat
No data.