Vulnerability in SiAdmin 1.1 that allows XSS via the /show.php query parameter. This vulnerability could allow a remote attacker to send a specially crafted URL to an authenticated user and thereby steal their cookie session credentials.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: INCIBE
Published: 2024-05-16T11:44:47.582Z
Updated: 2024-08-01T20:55:10.414Z
Reserved: 2024-05-16T09:51:26.559Z
Link: CVE-2024-4993

Updated: 2024-08-01T20:55:10.414Z

Status : Awaiting Analysis
Published: 2024-05-16T12:15:15.290
Modified: 2024-11-21T09:44:00.907
Link: CVE-2024-4993

No data.