Matrix - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NMatrix Globalservices Tafnit
APPMatrix-Globalservices< 8.4.202
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
XSS
CWE
Powiązane podatności
CVE-2024-38429HIGH7.5ten sam produkt
Matrix Tafnit v8 - CWE-552: Files or Directories Accessible to External Parties
CVE-2024-38431MEDIUM5.3ten sam produkt
Matrix Tafnit v8 - CWE-204: Observable Response Discrepancy
CVE-2024-38432MEDIUM5.5ten sam produkt
Matrix Tafnit v8 - CWE-646: Reliance on File Name or Extension of Externally-Supplied File