mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
808 B
808 B
CVE-2024-25831
Description
F-logic DataCube3 Version 1.0 is affected by a reflected cross-site scripting (XSS) vulnerability due to improper input sanitization. An authenticated, remote attacker can execute arbitrary JavaScript code in the web management interface.
POC
Reference
- https://neroteam.com/blog/f-logic-datacube3-vulnerability-report
- https://neroteam.com/blog/f-logic-datacube3-vulnerability-report