Sites managed in S@M CMS (Concept Intermedia) might be vulnerable to Reflected XSS via including scripts in one of GET header parameters.
Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears.
CVSS
No CVSS.
References
No reference.
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: CERT-PL
Published: 2024-06-28T12:44:38.927Z
Updated: 2024-07-02T15:57:35.414Z
Reserved: 2024-04-15T11:03:30.990Z
Link: CVE-2024-3801
JSON object: View
NVD Information
No data.
Redhat Information
No data.
CWE