leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-270366 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about thi...","inLanguage":"en-US","mainEntityOfPage":{"@type":"WebPage","@id":"https://intel.enki-guard.com/vulnerability/CVE-2024-6523-zkteco-biotime-cross-site-scripting-in-system-group-add-handler"},"url":"https://intel.enki-guard.com/vulnerability/CVE-2024-6523-zkteco-biotime-cross-site-scripting-in-system-group-add-handler","identifier":"CVE-2024-6523","keywords":"CVE-2024-6523, CVE, vulnerability, security advisory, Medium severity","about":{"@type":"Thing","name":"CVE-2024-6523","identifier":"CVE-2024-6523"},"author":{"@type":"Organization","name":"AnKi Security OÜ","url":"https://anki-security.com"},"publisher":{"@type":"Organization","name":"Enki CVE Intelligence","url":"https://intel.enki-guard.com","logo":{"@type":"ImageObject","url":"https://intel.enki-guard.com/og/static/home.png"}},"datePublished":"2024-07-05T11:15:10+00:00","dateModified":"2024-11-21T09:49:47+00:00","image":"https://intel.enki-guard.com/og/cve/CVE-2024-6523.png"}