Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting (XSS) through /admin/SystemUsers, login / description fields, passwd1/ passwd2 parameters. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim and steal their session data.
Metrics
Affected Vendors & Products
References
History
Thu, 27 Feb 2025 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Whitebearsolutions
Whitebearsolutions wbsairback |
|
CPEs | cpe:2.3:a:whitebearsolutions:wbsairback:21.02.04:*:*:*:*:*:*:* | |
Vendors & Products |
Whitebearsolutions
Whitebearsolutions wbsairback |

Status: PUBLISHED
Assigner: INCIBE
Published:
Updated: 2024-08-01T20:20:01.606Z
Reserved: 2024-04-15T10:18:58.736Z
Link: CVE-2024-3790

Updated: 2024-08-01T20:20:01.606Z

Status : Analyzed
Published: 2024-05-14T15:42:17.243
Modified: 2025-02-27T15:34:49.607
Link: CVE-2024-3790

No data.