CVE-2024-50705

High CVSS: 7.1

Unauthenticated reflected cross-site scripting (XSS) vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary scripts via the page parameter.

Vendor

Uniguest

Product

Tripleplay

CWE

CWE-352

Yayın Tarihi

2025-03-04 15:15:19

Güncelleme

2025-05-21 15:42:14

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-352 Tripleplay HIGH Uniguest 2025

Referanslar

https://uniguest.com/cve-bulletins/ https://uniguest.com/wp-content/uploads/2025/02/CVE-2024-50705-Vulnerability-Summary.pdf

Benzer Kayıtlar

Critical

CVE-2024-50704

Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to exec…

Critical

CVE-2024-50707

Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to exec…

Critical

CVE-2024-50706

Unauthenticated SQL injection vulnerability in Uniguest Tripleplay version 23.1+ allows remote attackers to execute arbi…