Adive Framework vulnerabilities
2 known vulnerabilities affecting adive/adive_framework.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-4337P4HIGHCVSS 7.4v2.0.82024-04-30
CVE-2024-4337 [HIGH] CWE-79 CVE-2024-4337: Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persisten
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting (XSS) vulnerability via the /adive/admin/nav/add, in multiple parameters. This vulnerability allows an attacker to retrieve the session details of an authenticated user.
nvd
CVE-2024-4336P4HIGHCVSS 7.4v2.0.82024-04-30
CVE-2024-4336 [HIGH] CWE-79 CVE-2024-4336: Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persisten
Adive Framework 2.0.8, does not sufficiently encode user-controlled inputs, resulting in a persistent Cross-Site Scripting (XSS) vulnerability via the /adive/admin/tables/add, in multiple parameters. An attacker could retrieve the session details of an authenticated user.
nvd