CVE-2024-7873 Information

Description

Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) Improper Encoding or Escaping of Output CWE - 83 Improper Neutralization of Script in Attributes in a Web Page vulnerability in Veribilim Software Veribase Order allows Stored XSS Cross-Site Scripting (XSS) Exploit Script-Based APIs XSS Through HTTP Headers.This issue affects Veribase Order: before v4.010.3.

Reference

https://www.usom.gov.tr/bildirim/tr-24-1485