Lucene search
HistoryNov 10, 2023 - 9:15 a.m.
CVE-2023-47164
vulnerability
hoteldruid
remote attacker
arbitrary script
web browser
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
33.3%
Cross-site scripting vulnerability in HOTELDRUID 3.0.5 and earlier allows a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is logging in to the product.
Affected configurations
Node
digitaldruidhoteldruidRange≤3.0.5
Related
prion
prion
Cross site scripting
2023-11-10 09:15:00
cvelist
cvelist
CVE-2023-47164
2023-11-10 08:59:13
cve
cve
CVE-2023-47164
2023-11-10 09:15:07
jvn
jvn
JVN#99177549: HOTELDRUID vulnerable to cross-site scripting
2023-11-10 00:00:00
debiancve
debiancve
CVE-2023-47164
2023-11-10 09:15:07
ubuntucve
ubuntucve
CVE-2023-47164
2023-11-10 00:00:00
veracode
veracode
Cross-Site Scripting
2023-11-28 02:10:10
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
33.3%
Related for NVD:CVE-2023-47164