Lucene search
@huntrdevCVE-2023-0607HistoryFeb 01, 2023 - 4:15 a.m.
CVE-2023-0607
2023-02-0104:15:09
CWE-79
@huntrdev
web.nvd.nist.gov
25
cve-2023-0607
cross-site scripting
stored xss
github repository
projectsend
nvd
CVSS3
4.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
22.1%
Cross-site Scripting (XSS) - Stored in GitHub repository projectsend/projectsend prior to r1606.
Affected configurations
Node
projectsendprojectsendRange<r1606
| Vendor | Product | Version | CPE |
|---|---|---|---|
| projectsend | projectsend | * | cpe:2.3:a:projectsend:projectsend:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "projectsend",
"product": "projectsend/projectsend",
"versions": [
{
"version": "unspecified",
"lessThan": "r1606",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
osv
osv
CVE-2023-0607
2023-02-01 04:15:09
nvd
nvd
CVE-2023-0607
2023-02-01 04:15:09
huntr
huntr
Cross-site Scripting (XSS) - Stored
2022-12-12 10:58:14
cvelist
cvelist
CVE-2023-0607 Cross-site Scripting (XSS) - Stored in projectsend/projectsend
2023-02-01 00:00:00
cnvd
cnvd
ProjectSend Cross-Site Scripting Vulnerability (CNVD-2023-07917)
2023-02-09 00:00:00
prion
prion
Cross site scripting
2023-02-01 04:15:00
CVSS3
4.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
22.1%
Related for CVE-2023-0607