CVE-2024-40508

Published September 26th, 2024

View on NVD ↗

CVSS v3

7.3

HIGH

CVSS v2

N/A

Affected

PROJECTS

Description

Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMConference.asmx function.

openpetra/openpetra

OpenPetra is an administration software (CRM+ERP) for charities

GitHub

115

Jansen-C-Moreira/CVE-2024-40508

OpenPetra v.2023.02 CVE-2024-40508

GitHub