Assigner: | LGE |
Reserved: | 2024-06-19 |
Published: | 2024-06-20 |
Updated: | 2024-06-20 |
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LG Electronics SuperSign CMS allows Reflected XSS. This issue affects SuperSign CMS: from 4.1.3 before < 4.3.1.
CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N |
Problem types
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Product status
4.1.3 before < 4.3.1
References
https://lgsecurity.lge.com/bulletins/idproducts#updateDetails