Zucchetti Ad_hoc_infinity
5 CVEs affecting Zucchetti Ad_hoc_infinity. Latest disclosed: 2025-10-30. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-51321 | High | 7.6 | 2025-03-11 | In Zucchetti Ad Hoc Infinity 2.4, an improper check on the m_cURL parameter allows an attacker to redirect the victim to an attacker-controlled website after t… |
CVE-2024-51319 | High | 7.3 | 2025-03-11 | A local file include vulnerability in the /servlet/Report of Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve Remote Code Execution by… |
CVE-2025-52180 | Medium | 6.1 | 2025-10-30 | Cross-site scripting (XSS) vulnerability in Zucchetti Ad Hoc Infinity 4.2 and earlier allows remote unauthenticated attackers to inject arbitrary JavaScript vi… |
CVE-2024-51322 | Medium | 5.4 | 2025-03-11 | Cross Site Scripting vulnerability in Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve Remote Code Execution via the /jsp/home.jsp, /j… |
CVE-2024-51320 | Medium | 5.4 | 2025-03-11 | Cross Site Scripting vulnerability in Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve Remote Code Execution via the /servlet/gsdm_fsa… |