CVE-2024-5959

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Eliz Software Panel allows Stored XSS.This issue affects Panel: before v2.3.24.
References
Link Resource
https://www.usom.gov.tr/bildirim/tr-24-1497 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:elizsoftware:panel:*:*:*:*:*:*:*:*

History

26 Sep 2024, 13:39

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.4
CPE cpe:2.3:a:elizsoftware:panel:*:*:*:*:*:*:*:*
First Time Elizsoftware panel
Elizsoftware
References () https://www.usom.gov.tr/bildirim/tr-24-1497 - () https://www.usom.gov.tr/bildirim/tr-24-1497 - Third Party Advisory

20 Sep 2024, 12:30

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad de neutralización incorrecta de la entrada durante la generación de páginas web (XSS o 'Cross-site Scripting') en Eliz Software Panel permite XSS almacenado. Este problema afecta al Panel: antes de v2.3.24.

18 Sep 2024, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-18 15:15

Updated : 2024-09-26 13:39


NVD link : CVE-2024-5959

Mitre link : CVE-2024-5959

CVE.ORG link : CVE-2024-5959


JSON object : View

Products Affected

elizsoftware

  • panel
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')