CVE-2024-40509

Published
View on NVD ↗
CVSS v3
7.3
HIGH
CVSS v2
N/A
Affected
2
PROJECTS

Description

Cross Site Scripting vulnerability in openPetra v.2023.02 allows a remote attacker to obtain sensitive information via the serverMFinDev.asmx function.

openpetra/openpetra
openpetra/openpetra
OpenPetra is an administration software (CRM+ERP) for charities
GitHubGitHub
115
Jansen-C-Moreira/CVE-2024-40509
Jansen-C-Moreira/CVE-2024-40509
OpenPetra v.2023.02 CVE-2024-40509
GitHubGitHub