Vulnerability CVE-2024-25327


Published: 2024-03-08

Description:
Cross Site Scripting (XSS) vulnerability in Justice Systems FullCourt Enterprise v.8.2 allows a remote attacker to execute arbitrary code via the formatCaseNumber parameter of the Citation search function.

See advisories in our WLB2 database:
Topic
Author
Date
Low
FullCourt Enterprise 8.2 Cross Site Scripting
Omar Sabagh
09.03.2024

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://packetstormsecurity.com/files/177500/FullCourt-Enterprise-8.2-Cross-Site-Scripting.html

Copyright 2024, cxsecurity.com

 

Back to Top