NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-7873

Summary	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting'), Improper Encoding or Escaping of Output, CWE - 83 Improper Neutralization of Script in Attributes in a Web Page vulnerability in Veribilim Software Veribase Order allows Stored XSS, Cross-Site Scripting (XSS), Exploit Script-Based APIs, XSS Through HTTP Headers.This issue affects Veribase Order: before v4.010.3.
Publication Date	Sept. 17, 2024, 10:15 p.m.
Registration Date	Sept. 18, 2024, 5 a.m.
Last Update	Sept. 20, 2024, 9:30 p.m.

Related information, measures and tools

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html
2	CWE-116	不適切なエンコード、または出力のエスケープ	https://cwe.mitre.org/data/definitions/116.html