cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-12756,https://securityvulnerability.io/vulnerability/CVE-2024-12756,HTML Injection Vulnerability in Avaya Spaces by Avaya,An HTML Injection vulnerability in Avaya Spaces could potentially allow attackers to disclose sensitive information or manipulate the page content that users see. This flaw poses a significant risk as it may enable unauthorized access to user data and compromise the integrity of the platform.,Avaya,Avaya Spaces,7.3,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-11T16:59:12.902Z,0
CVE-2024-12755,https://securityvulnerability.io/vulnerability/CVE-2024-12755,Cross-Site Scripting Vulnerability in Avaya Spaces,"A Cross-Site Scripting vulnerability in Avaya Spaces could potentially allow unauthorized users to execute malicious code within the application. This can lead to the disclosure of sensitive information, as attackers could manipulate the web environment to perform unauthorized actions that compromise user data and privacy. Proper validation and sanitization of user inputs are essential to mitigate this risk and protect against such vulnerabilities.",Avaya,Avaya Spaces,7.9,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-02-11T16:57:07.799Z,0