← Volver a CVEs
CVE-2021-29011
MEDIUM6.1
Descripcion
DMA Softlab Radius Manager 4.4.0 is affected by Cross Site Scripting (XSS) via the description, name, or address field (under admin.php).
Detalles CVE
Puntuacion CVSS v3.16.1
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioREQUIRED
Publicado4/2/2021
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
dmasoftlab:dma_radius_manager
Debilidades (CWE)
CWE-79
Referencias
http://packetstormsecurity.com/files/164154/DMA-Softlab-Radius-Manager-4.4.0-Session-Management-Cross-Site-Scripting.html(cve@mitre.org)
https://github.com/1d8/publications/tree/main/cve-2021-29011(cve@mitre.org)
https://sourceforge.net/projects/radiusmanager/(cve@mitre.org)
http://packetstormsecurity.com/files/164154/DMA-Softlab-Radius-Manager-4.4.0-Session-Management-Cross-Site-Scripting.html(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/1d8/publications/tree/main/cve-2021-29011(af854a3a-2127-422b-91ae-364da2661108)
https://sourceforge.net/projects/radiusmanager/(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.