Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-3505
HistoryJul 04, 2023 - 4:15 p.m.

Cross site scripting

2023-07-0416:15:00
PRIOn knowledge base
www.prio-n.com
6
vulnerability
onest crm 1.0
remote attack
cross site scripting
project list handler
manipulation
nvd
vendor disclosure

0.0005 Low

EPSS

Percentile

17.1%

JSON

A vulnerability was found in Onest CRM 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/project/update/2 of the component Project List Handler. The manipulation of the argument name with the input <script>alert(1)</script> leads to cross site scripting. It is possible to initiate the attack remotely. The identifier VDB-232953 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Related

nvd 1
cvelist 1
cve 1
nvd
nvd
CVE-2023-3505
2023-07-04 16:15:09
cvelist
cvelist
CVE-2023-3505 Onest CRM Project List 2 cross site scripting
2023-07-04 15:31:03
cve
cve
CVE-2023-3505
2023-07-04 16:15:09

0.0005 Low

EPSS

Percentile

17.1%

JSON
Related for PRION:CVE-2023-3505
nvd1cvelist1cve1