CVE-2024-42678
MEDIUMSuper easy enterprise management system <1.0.0 - XSS
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2024-42678. PoCs published by WarmBrew.
AI-analyzed exploit summary The repository contains detailed technical writeups for multiple CVEs, including CVE-2024-42678, with descriptions, affected versions, and proof-of-concept code snippets. It provides insights into vulnerabilities like XSS, SQL injection, and insecure permissions in various software products.
Description
Cross Site Scripting vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the /WebSet/DlgGridSet.html component.
Exploits (1)
The repository contains detailed technical writeups for multiple CVEs, including CVE-2024-42678, with descriptions, affected versions, and proof-of-concept code snippets. It provides insights into vulnerabilities like XSS, SQL injection, and insecure permissions in various software products.
References (2)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N