216.73.217.98

CVE-2024-3801

· Published 28/06/2024 13:15 · Modified 28/06/2024 13:38

Labels: CVE-2024-3801 2024-06-28CVE-2024-3801CWE-79[email protected]

Essential information

Published
28/06/2024 13:15
Modified
28/06/2024 13:38
Author
Creator
CISA KEV
No
CWE

Description

Sites managed in S@M CMS (Concept Intermedia) might be vulnerable to Reflected XSS via including scripts in one of GET header parameters.  Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References