CVE-2023-6366

🗓️ 14 Dec 2023 16:05:31Reported by ProgressSoftwareType

WhatsUp Gold versions before 2023.1, Stored XSS vulnerabilit

Reporter	Title	Published	Views	Family All 10
CNNVD	Progress Software WhatsUp Gold Cross-Site Scripting Vulnerability	14 Dec 202300:00	–	cnnvd
Cvelist	CVE-2023-6366 WhatsUp Gold Stored Cross-Site Scripting (XSS) via Alert Center	14 Dec 202316:05	–	cvelist
EUVD	EUVD-2023-58607	3 Oct 202520:07	–	euvd
NVD	CVE-2023-6366	14 Dec 202316:15	–	nvd
OSV	CVE-2023-6366	14 Dec 202316:15	–	osv
Prion	Cross site scripting	14 Dec 202316:15	–	prion
Tenable Nessus	Progress WhatsUp Gold < 23.1 Multiple Vulnerabilities	22 Dec 202300:00	–	nessus
Positive Technologies	PT-2023-32629 · Ipswitch · Whatsup Gold	14 Dec 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-6366	23 May 202504:57	–	redhatcve
Vulnrichment	CVE-2023-6366 WhatsUp Gold Stored Cross-Site Scripting (XSS) via Alert Center	14 Dec 202316:05	–	vulnrichment

NVD

Node

progress whatsup_goldRange<23.1.0

[
  {
    "defaultStatus": "affected",
    "modules": [
      "Alert Center"
    ],
    "product": "WhatsUp Gold",
    "vendor": "Progress Software Corporation",
    "versions": [
      {
        "lessThan": "2023.1",
        "status": "affected",
        "version": "2023.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "2022.1",
        "status": "affected",
        "version": "2022.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
progress	www.progress.com/network-monitoring
community	www.community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-December-2023

21 Nov 2024 08:43Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.15.4 - 7.6

EPSS0.00016

SSVC

CWE-79