CVE-2024-10926

CVSS 3.1 Score 3.5 of 10 (low)

Details

Published Nov 6, 2024

CWE ID 79

CWE ID 74

Summary

CVE-2024-10926 is a newly disclosed vulnerability affecting IBPhoenix ibWebAdmin versions up to 1.0.2. This issue involves the processing of the /toggle_fold_panel.php file in the Tabelas Section component. The vulnerability allows for cross-site scripting attacks, which can be initiated remotely. The exploit for this vulnerability has been made public, making it a significant risk for affected systems. Despite early disclosure to the vendor, they have not yet responded to address the issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0RcTZ4
https://www.cve.org/CVERecord?id=CVE-2024-10926
https://nvd.nist.gov/vuln/detail/CVE-2024-10926

Back to Vulnerability Database

CVE-2024-10926

CVSS 3.1 Score 3.5 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations