Medium severity6.1NVD Advisory· Published May 21, 2024· Updated Jun 17, 2026
CVE-2024-31847
CVE-2024-31847
Description
An issue was discovered in Italtel Embrace 1.6.4. A stored cross-site scripting (XSS) vulnerability allows authenticated and unauthenticated remote attackers to inject arbitrary web script or HTML into a GET parameter. This reflects/stores the user input without sanitization.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: =1.6.4
Patches
Vulnerability mechanics
References
1- www.gruppotim.it/it/footer/red-team.htmlnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.