CVE-2024-53470

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/gateway_pagamento.php of WeGIA v3.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the id or name parameter.

LabRedesCefetRJ/WeGIA
LabRedesCefetRJ/WeGIA
WeGIA: Web gerenciador para instituições assistenciais
GitHubGitHub
23
nmmorette/vulnerability-research
nmmorette/vulnerability-research
GitHubGitHub