Lucene search

CVE-2023-0549

🗓️ 27 Jan 2023 19:10:15Reported by [email protected]Type

Vulnerability in YAFNET 3.1.10 allows remote attackers to conduct cross-site scripting via manipulation of message subject in the Private Message Handler component

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
Cvelist	CVE-2023-0549 YAFNET Private Message PostPrivateMessage cross site scripting	27 Jan 202318:57	–	cvelist
Vulnrichment	CVE-2023-0549 YAFNET Private Message PostPrivateMessage cross site scripting	27 Jan 202318:57	–	vulnrichment
Prion	Cross site scripting	27 Jan 202319:15	–	prion
CVE	CVE-2023-0549	27 Jan 202319:15	–	cve
OSV	CVE-2023-0549	27 Jan 202319:15	–	osv

Nvd

Node

yetanotherforum yaf.netRange3.1.0–3.1.10

Source	Link
github	www.github.com/YAFNET/YAFNET/security/advisories/GHSA-4hwx-678w-9cp5
vuldb	www.vuldb.com/
drive	www.drive.google.com/drive/folders/1ct6Tp_cnsYO8L_JSvlBCf_Ae7KW3JAcD
vuldb	www.vuldb.com/
github	www.github.com/YAFNET/YAFNET/releases/tag/v3.1.11
github	www.github.com/YAFNET/YAFNET/commit/2237a9d552e258a43570bb478a92a5505e7c8797

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

27 Jan 2023 19:15Current

4.3Medium risk

Vulners AI Score4.3

CVSS24

CVSS35.4

EPSS0.00106

CWE-79