Medium severity6.1NVD Advisory· Published Mar 3, 2022· Updated Jul 5, 2026
CVE-2022-24573
CVE-2022-24573
Description
A stored cross-site scripting (XSS) vulnerability in the admin interface in Element-IT HTTP Commander 7.0.0 allows unauthenticated users to get admin access by injecting a malicious script in the User-Agent field.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Element-IT/HTTP Commanderdescription
- Range: 7.0.0
Patches
Vulnerability mechanics
References
2- element-it.comnvdVendor Advisory
- www.element-it.com/news.aspxnvdMitigationRelease NotesVendor Advisory
News mentions
0No linked articles in our index yet.