Page 2 of 11 results (0.001 seconds)
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-10087 – XSS in iKSORIS
https://notcve.org/view.php?id=CVE-2024-10087
14 Apr 2025 — Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Reflected XSS (Cross-site Scripting) attacks. An attacker might craft a link containing a malicious script, which then gets directly embedded in references to other resources, what causes the script to run in user's context multiple times. This vulnerability has been patched in version 79.0 • https://cert.pl/en/posts/2025/04/CVE-2024-10087 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •