VYPR
Unrated severityNVD Advisory· Published Sep 12, 2024· Updated Sep 12, 2024

Cross-site Scripting vulnerability in Idoit pro

CVE-2024-8750

Description

Cross-site Scripting (XSS) vulnerability in idoit pro version 28. This vulnerability allows an attacker to retrieve session details of an authenticated user due to lack of proper sanitization of the following parameters (id,lang,mNavID,name,pID,treeNode,type,view).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Synetics/Idoit Prollm-fuzzy2 versions
    = 28+ 1 more
    • (no CPE)range: = 28
    • (no CPE)range: 28

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.