CVE-2024-37776 | THREATINT

Description

A cross-site scripting (XSS) vulnerability in Sunbird DCIM dcTrack v9.1.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in some admin screens.

PUBLISHED Reserved 2024-06-10 | Published 2024-12-16 | Updated 2024-12-17 | Assigner mitre

References

dctrack.com

s3.us-east-1.amazonaws.com/...cTrack_9.2.0_Release_Notes.pdf

cve.org (CVE-2024-37776)

nvd.nist.gov (CVE-2024-37776)

Download JSON