Lucene search
HistoryNov 10, 2023 - 9:15 a.m.
CVE-2023-47164
cve-2023-47164
cross-site-scripting
hoteldruid
vulnerability
nvd
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
33.2%
Cross-site scripting vulnerability in HOTELDRUID 3.0.5 and earlier allows a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is logging in to the product.
Affected configurations
Node
digitaldruid.nethoteldruidMatch3.0.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| digitaldruid:hoteldruid | digitaldruid hoteldruid | le | 3.0.5 |
CNA Affected
[
{
"vendor": "DigitalDruid.Net",
"product": "HOTELDRUID",
"versions": [
{
"version": "3.0.5 and earlier",
"status": "affected"
}
]
}
]Related
prion
prion
Cross site scripting
2023-11-10 09:15:00
cvelist
cvelist
CVE-2023-47164
2023-11-10 08:59:13
nvd
nvd
CVE-2023-47164
2023-11-10 09:15:07
jvn
jvn
JVN#99177549: HOTELDRUID vulnerable to cross-site scripting
2023-11-10 00:00:00
debiancve
debiancve
CVE-2023-47164
2023-11-10 09:15:07
ubuntucve
ubuntucve
CVE-2023-47164
2023-11-10 00:00:00
veracode
veracode
Cross-Site Scripting
2023-11-28 02:10:10
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
33.2%
Related for CVE-2023-47164