Vulnerabilities > Ellevo > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-09-25 CVE-2024-46655 Cross-site Scripting vulnerability in Ellevo 6.2.0.38160
A reflected cross-site scripting (XSS) vulnerability in Ellevo 6.2.0.38160 allows attackers to execute arbitrary code in the context of a user's browser via a crafted payload or URL.
network
low complexity
ellevo CWE-79
6.1
6.1