Security Advisory

CVE-2024-28128

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-18 07:31:34

Last updated 2025-03-20 19:10:27

Assigner jpcert

State PUBLISHED

Description

Cross-site scripting vulnerability exists in FitNesse releases prior to 20220319, which may allow a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is using the product and accessing a link with a specially crafted certain parameter.

← Browse all CVEs View on cve.org ↗