mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-06-19 17:31:42 +00:00
33 lines
1.2 KiB
JSON
33 lines
1.2 KiB
JSON
{
|
|
"id": "CVE-2024-40101",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2024-08-06T14:16:04.117",
|
|
"lastModified": "2024-08-06T16:30:24.547",
|
|
"vulnStatus": "Undergoing Analysis",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "A Reflected Cross-site scripting (XSS) vulnerability exists in '/search' in microweber 2.0.15 and earlier allowing unauthenticated remote attackers to inject arbitrary web script or HTML via the 'keywords' parameter."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Existe una vulnerabilidad de Cross-Site Scripting (XSS) reflejado en '/search' en microweber 2.0.15 y anteriores, que permite a atacantes remotos no autenticados inyectar scripts web o HTML arbitrarios a trav\u00e9s del par\u00e1metro 'palabras clave'."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "http://microweber.com",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://github.com/microweber/microweber/commit/0dede6886c6df3d1f31c4f4e3ba1ab4a336fbf79",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://seclists.org/fulldisclosure/2024/Aug/1",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |