How severe is CVE-2024-28728?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.6 out of 10.

What type of vulnerability is CVE-2024-28728?

This is classified as CWE-79, which is a common weakness in software security.

CVE-2024-28728

MEDIUM Year: 2024

CVSS v3 Score

6.6

Medium

Weakness Type

CWE-79

View all →

Vulnerability Description

Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to obtain sensitive information via a crafted payload to the WiFi SSID Name field.

CVE-2021-3783

MEDIUM

CVSS:6.6(Medium)

yourls is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4116

MEDIUM

CVSS:6.6(Medium)

yetiforcecrm is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4139

MEDIUM

CVSS:6.6(Medium)

pimcore is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4175

MEDIUM

CVSS:6.6(Medium)

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2021-4179

MEDIUM

CVSS:6.6(Medium)

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-792021

CVE-2022-0262

MEDIUM

CVSS:6.6(Medium)

Cross-site Scripting (XSS) - Stored in Packagist pimcore/pimcore prior to 10.2.7.

CWE-792022

CVE-2024-28728

Vulnerability Description

Related Vulnerabilities

CVE-2021-3783

CVE-2021-4116

CVE-2021-4139

CVE-2021-4175

CVE-2021-4179

CVE-2022-0262