CVE-2024-35321

MyNET up to v26.08 was discovered to contain a Reflected cross-site scripting (XSS) vulnerability via the msgtipo parameter.

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

References

Link	Resource
https://github.com/Manuel-arc/Common-Vulnerabilities-and-Exposures-CVE-/blob/main/MyNet.md	Third Party Advisory Exploit
https://github.com/am0nt31r0/Common-Vulnerabilities-and-Exposures-CVE-/blob/main/MyNet.md	Exploit Third Party Advisory
https://www.airc.pt/solucoes-servicos/solucoes?segment=MYN	Product

Configurations

Configuration 1 (hide)

cpe:2.3:a:airc:mynet:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-12-22 19:15

Updated : 2026-01-05 17:50

NVD link : CVE-2024-35321

Mitre link : CVE-2024-35321

CVE.ORG link : CVE-2024-35321

JSON object : View

Products Affected

airc

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')