CVE Alert: CVE-2024-49210
Vulnerability Summary: CVE-2024-49210
Reflected XSS was discovered in an iView List Archer Platform UX page in Archer Platform 6.x before version 2024.09. A remote unauthenticated attacker could potentially exploit this by tricking a victim application user into supplying malicious HTML or JavaScript code to the vulnerable web application; the malicious code is then reflected back to the victim and executed by the web browser in the context of the vulnerable web application.
Affected Endpoints:
No affected endpoints listed.
Published Date:
10/22/2024, 5:15:05 PM
⚠️ CVSS Score:
Exploit Status:
Not ExploitedReferences:
- https://www.archerirm.community/t5/platform-announcements/archer-update-for-multiple-vulnerabilities/ta-p/747545
- https://www.archerirm.community/t5/platform-announcements/tkb-p/product-advisories-tkb
Recommended Action:
No proposed action available. Please refer to vendor documentation for updates.
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
