Medium severity6.1NVD Advisory· Published Jun 24, 2024· Updated Jun 17, 2026
CVE-2024-37679
CVE-2024-37679
Description
Cross Site Scripting vulnerability in Hangzhou Meisoft Information Technology Co., Ltd. Finesoft v.8.0 and before allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp parameter.
Affected products
2- Hangzhou Meisoft Information Technology Co., Ltd./Finesoftdescription
- Range: <=8.0
Patches
Vulnerability mechanics
References
1- github.com/dabaizhizhu/123/issues/4nvdExploitIssue Tracking
News mentions
0No linked articles in our index yet.