Vulnerability in Clibo Manager v1.1.9.1 that could allow an attacker to execute an stored Cross-Site Scripting (stored XSS ) by uploading a malicious .svg image in the section: Profile > Profile picture.
Metrics
Affected Vendors & Products
References
History
Thu, 26 Sep 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 26 Sep 2024 10:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Vulnerability in Clibo Manager v1.1.9.1 that could allow an attacker to execute an stored Cross-Site Scripting (stored XSS ) by uploading a malicious .svg image in the section: Profile > Profile picture. | |
Title | Stored Cross-Site Scripting vulnerability in Clibo Manager | |
Weaknesses | CWE-79 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2024-09-26T09:49:35.882Z
Updated: 2024-09-26T13:25:23.927Z
Reserved: 2024-09-26T07:25:31.514Z
Link: CVE-2024-9198
Vulnrichment
Updated: 2024-09-26T13:25:18.144Z
NVD
Status : Awaiting Analysis
Published: 2024-09-26T10:15:05.040
Modified: 2024-09-26T13:32:02.803
Link: CVE-2024-9198
Redhat
No data.