CVE-2024-2259

by Fred · 13/08/2024

This vulnerability exists in InstaRISPACS software due to insufficient validation of user supplied input for the loginTo parameter in user login module of the web interface of the application. A remote attacker could exploit this vulnerability by sending a specially crafted input to the vulnerable parameter to perform reflected Cross Site Scripting (XSS) attacks on the targeted system.

More information : https://www.cert-in.org.in/s2cMainServlet?pageid=PUBVLNOTES01&VLCODE=CIVN-2024-0241

CVE-2024-2259

Similar

Recent Posts

Categories

CVE-2024-2259

Share this:

Similar

Recent Posts

Categories

Tags