CVE-2024-7077

MEDIUM

6.1

CVSS Severity Score

EPSS Score0.1690%

EPSS Percentile2.12th

PublishedSep 4, 2024

Last ModifiedJun 3, 2026

Vulnerability Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Semtek Informatics Software Consulting Inc. Semtek Sempos allows Reflected XSS. This issue affects Semtek Sempos: through 31072024.

Affected Platforms (CPE)

📦

Semtekyazilim

Semtek Sempos

<= 31072024

References & Advisories

🔗 https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1396

🔗 https://www.usom.gov.tr/bildirim/tr-24-1396

Related Vulnerabilities

CVE-2024-70769.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Semtek Informatics Software ...

CVE-2024-70789.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Semtek Informatics Software ...

CVE-2024-1315210.0

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in BSS Software Mobuy Online Ma...

CVE-2024-309410.0

Backdoor in upstream xz-utils package allows SSH remote code execution (XZ Utils backdoor). Malicious code was discovered in the u...