Vulnerabilities > CVE-2024-24571 - Unspecified vulnerability in Facilemanager
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
facileManager is a modular suite of web apps built with the sysadmin in mind. For the facileManager web application versions 4.5.0 and earlier, we have found that XSS was present in almost all of the input fields as there is insufficient input validation.
Vulnerable Configurations
References
- https://github.com/WillyXJ/facileManager/commit/0aa850d4b518f10143a4c675142b15caa5872877
- https://github.com/WillyXJ/facileManager/commit/0aa850d4b518f10143a4c675142b15caa5872877
- https://github.com/WillyXJ/facileManager/security/advisories/GHSA-h7w3-xv88-2xqj
- https://github.com/WillyXJ/facileManager/security/advisories/GHSA-h7w3-xv88-2xqj