Lucene search
HistorySep 06, 2023 - 1:15 p.m.
CVE-2023-41150
cve-2023-41150
cross-site scripting
f-revocrm 7.3
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
14.2%
F-RevoCRM 7.3 series prior to version7.3.8 contains a cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is using the product.
Affected configurations
Node
f-revocrmf-revocrmRange7.3–7.3.8
Related
cvelist
cvelist
CVE-2023-41150
2023-09-06 12:35:41
prion
prion
Cross site scripting
2023-09-06 13:15:00
cve
cve
CVE-2023-41150
2023-09-06 13:15:09
jvn
jvn
JVN#78113802: Multiple vulnerabilities in F-RevoCRM
2023-09-05 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
14.2%
Related for NVD:CVE-2023-41150