Overview
- Description
- Clickjacking vulnerability in Clibo Manager v1.1.9.12 in the '/public/login' directory, a login panel. This vulnerability occurs due to the absence of an X-Frame-Options server-side header. An attacker could overlay a transparent iframe to perform click hijacking on victims.
- Source
- cve-coordination@incibe.es
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Secondary
- Base score
- 6.1
- Impact score
- 2.7
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
Weaknesses
- cve-coordination@incibe.es
- CWE-1021
Social media
- Hype score
- Not currently trending
CVE-2024-10454 Clickjacking Vulnerability in Clibo Manager v1.1.9.12 Login Panel There's a clickjacking issue in Clibo Manager v1.1.9.12 in the '/public/login' area. This problem happens because there's no X-Fram... https://t.co/3vKbMh5NVL
@VulmonFeeds
31 Oct 2024
46 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
CVE-2024-10454 Clickjacking vulnerability in Clibo Manager v1.1.9.12 in the '/public/login' directory, a login panel. This vulnerability occurs due to the absence of an X-Frame-Opti… https://t.co/KD847AHDz7
@CVEnew
31 Oct 2024
369 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes