Vulnerabilities

CVE-2024-49708

by Fred · 14/04/2025

Internet Starter, one of SoftCOM iKSORIS system modules, is vulnerable to Stored XSS (Cross-site Scripting) attacks. An attacker might trick a user into filling a form designed for setting delivery address with a malicious script, what causes the script to run in user’s context.
This vulnerability has been patched in version 79.0

More information : https://cert.pl/en/posts/2025/04/CVE-2024-10087

Similar

Tags: Cybersecurity Alert