1 results (0.001 seconds)
CVSS: 8.0EPSS: 0%CPEs: 1EXPL: 0
CVSS: 8.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-52951 – Omada Identity Cross Site Scripting
https://notcve.org/view.php?id=CVE-2024-52951
27 Nov 2024 — Stored Cross-Site Scripting in the Access Request History in Omada Identity before version 15 update 1 allows an authenticated attacker to execute arbitrary code in the browser of a victim via a specially crafted link or by viewing a manipulated Access Request History Omada Identity versions prior to 15U1 and 14.14 hotfix #309 suffer from a persistent cross site scripting vulnerability. • https://omadaidentity.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •