Vulnerability CVE-2024-8776


Published: 2024-09-16

Description:
SmartRobot from INTUMIT does not properly validate a specific page parameter, allowing unautheticated remote attackers to inject JavaScript code to the parameter for Reflected Cross-site Scripting attacks.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://www.twcert.org.tw/tw/cp-132-8069-73393-1.html
https://www.twcert.org.tw/en/cp-139-8070-d10bc-2.html

Copyright 2026, cxsecurity.com

 

Back to Top