CVE-2024-46278
HIGHSismics Teedy - XSS
Title source: ruleDescription
Teedy 1.11 is vulnerable to Cross Site Scripting (XSS) via the management console.
Exploits (2)
exploitdb
WORKING POC
by Ayato Shitomi @ Fore-Z co.ltd · textwebappsmultiple
https://www.exploit-db.com/exploits/52228
nomisec
WORKING POC
1 stars
by ayato-shitomi · poc
https://github.com/ayato-shitomi/CVE-2024-46278-teedy_1.11_account-takeover
Scores
CVSS v3
8.4
EPSS
0.0118
EPSS Percentile
78.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
Details
CWE
CWE-79
Status
published
Products (1)
sismics/teedy
1.11
Published
Oct 07, 2024
Tracked Since
Feb 18, 2026