jeanmarc77 123solar 1.8.4.5 /detailed.php date1 Okukwata ku Kuteekateeka mu Kifo Ekitali Kyo (Cross Site Scripting)

CVSS Obubonero bwa Meta TempEkikadde ky’omuwendo gw’okukozesa obunafu obuliko kati (≈)CTI Ennyanja y'okukwata ku nsonga
3.3$0-$5k0.00

Okusumululaamakuru

Obulabe obwategekeddwa nga kizibu busingiddwa mu jeanmarc77 123solar 1.8.4.5. Ekikosebwa kye ekikozesebwa ekitamanyiddwa ku fayiro /detailed.php. Okukyuusa mu lugero date1 kireeta Okukwata ku Kuteekateeka mu Kifo Ekitali Kyo (Cross Site Scripting). Obunafu buno bweyitibwa CVE-2024-9007. Waliwo obusobozi okutandika attack nga oli wala. Wadde era waliwo ekikozesebwa ekirabikako. Kitegekeddwa okuteekako patch okumalawo ekizibu kino. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Ebirimuamakuru

Obulabe obwategekeddwa nga kizibu busingiddwa mu jeanmarc77 123solar 1.8.4.5. Ekikosebwa kye ekikozesebwa ekitamanyiddwa ku fayiro /detailed.php. Okukyuusa mu lugero date1 kireeta Okukwata ku Kuteekateeka mu Kifo Ekitali Kyo (Cross Site Scripting). Okulambika ekizibu nga ukozesa CWE kivaako CWE-79. Ekizibu kino kyayisibwa nga 73. Ekiteeso kino kyawandiikiddwa era kisobola okuddownloadinga ku github.com.

Obunafu buno bweyitibwa CVE-2024-9007. Waliwo obusobozi okutandika attack nga oli wala. Ebisingawo ku by'ekikugu biriwo. Obungi bw'ensobi eno buli wansi w'obusookerwako. Wadde era waliwo ekikozesebwa ekirabikako. Ekikozesebwa kyategeezeddwa abantu bonna era kisobola okukozesebwa. Kati ekikadde ekisoboka ku mutengo gw’ekikozesebwa kiyinza okuba nga kisoba mu USD $0-$5k mu kiseera kino.

Kiwandiikiddwa nga ebikakasa eby'okukakasa obusobozi. Waliwo omukisa ogusobola okukozesebwa okuddownloadinga exploit ku github.com.

Ekirambulula ekirina ku patch kino kwe 94bf9ab7ad0ccb7fbdc02f172f37f0e2ea08d48f. Obulabe buzze busombodde era osobola okuddamu okufuna ekikozesebwa ku github.com. Kitegekeddwa okuteekako patch okumalawo ekizibu kino.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Ekitunduamakuru

Omukola

Erinnya

Enkola

Layisensi

Olupapula olw’omu mukutu

CPE 2.3amakuru

CPE 2.2amakuru

CVSSv4amakuru

VulDB Ekikunta: 🔍
VulDB Reliability: 🔍

CVSSv3amakuru

VulDB Obubonero Obusookerwako Obw'enkizo: 3.5
VulDB Obubonero bwa Meta Temp: 3.3

VulDB Obubonero Obusookerwako: 3.5
VulDB Obubonero bw’akaseera: 3.2
VulDB Ekikunta: 🔍
VulDB Reliability: 🔍

CNA Obubonero Obusookerwako: 3.5
CNA Ekikunta: 🔍

CVSSv2amakuru

AVACAuCIA
💳💳💳💳💳💳
💳💳💳💳💳💳
💳💳💳💳💳💳
EkikozesebwaObuzibu obungiOkukakasa obutuufu bw'omuntuObukakafuObutebenkevuOkusobola okufuna (Obusobozi obw'okufuna)
okuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbula
okuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbula
okuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbulaokuyimbula

VulDB Obubonero Obusookerwako: 🔍
VulDB Obubonero bw’akaseera: 🔍
VulDB Reliability: 🔍

Okukozesa obunafuamakuru

Ekibiina: Okukwata ku Kuteekateeka mu Kifo Ekitali Kyo (Cross Site Scripting)
CWE: CWE-79 / CWE-94 / CWE-74
CAPEC: 🔍
ATT&CK: 🔍

Obulamu obw’omubiri: Nedda
Wansi wano: Nedda
Waliwo okuva wala: Wee

Okusobola okufuna (Obusobozi obw'okufuna): 🔍
Okuyingira: Bweru
Embeera: Ebikakasa eby'okukakasa obusobozi
Okukuba wansi: 🔍
Google Hack: 🔍

EPSS Score: 🔍
EPSS Percentile: 🔍

Okukulaakulana kw'ebisale: 🔍
Okubala okw’ensimbi okw’akatono okuva mu kiseera kino: 🔍

0-Dayokuyimbulaokuyimbulaokuyimbulaokuyimbula
Leerookuyimbulaokuyimbulaokuyimbulaokuyimbula

Amagezi ku bulabeamakuru

Okukwata ku: 🔍
Abakola abali mu kikolwa: 🔍
Ebibiina bya APT ebikola kaakano: 🔍

Ebyokukwata ku kwekuumiraamakuru

Okukakasa: Ekikozesebwa eky’okuddamu obulabe
Embeera: 🔍

Ekiseera kya 0-Day: 🔍

Ekikozesebwa eky’okuddamu obulabe: 94bf9ab7ad0ccb7fbdc02f172f37f0e2ea08d48f

Ekiseera ekyayitaamakuru

19/09/2024 🔍
19/09/2024 +0 ennaku 🔍
09/03/2025 +171 ennaku 🔍

Ebyokutwaliraamakuru

Ekitundu: github.com

Okukebereza: 73
Embeera: Kikakasiddwa
Okukakasa: 🔍

CVE: CVE-2024-9007 (🔍)
GCVE (CVE): GCVE-0-2024-9007
GCVE (VulDB): GCVE-100-278163
scip Labs: https://www.scip.ch/en/?labs.20161013

Okuyingizaamakuru

Kikolebwa: 19/09/2024 18:00
Okukozesa enkola empya: 09/03/2025 20:08
Okukyuusa: 19/09/2024 18:00 (60), 20/09/2024 12:46 (19), 09/03/2025 20:08 (3)
Kituufu ddala: 🔍
Owoleza: hejiasheng
Cache ID: 253:04E:103

Twasirizaamakuru

Kikkiriziddwa

Okukubaganya ebirowoozo

Tewali biragiddwaako kati. Enimi: lg + en.

Nsaba yingira mu akaawunti yo osobole okwogera.

DdaabayoOkusaba Kw'ebintu ByonnaGenda mu maaso

Interested in the pricing of exploits?

See the underground prices here!