Security Advisory

CVE-2024-3801

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-28 12:44:38

Last updated 2024-10-30 15:49:56

Assigner CERT-PL

State PUBLISHED

Description

Sites managed in S@M CMS (Concept Intermedia) might be vulnerable to Reflected XSS via including scripts in one of GET header parameters. Only a part of observed services is vulnerable, but since vendor has not investigated the root problem, it is hard to determine when the issue appears.

← Browse all CVEs View on cve.org ↗