Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-4493
HistoryOct 04, 2023 - 1:15 p.m.

Cross site scripting

2023-10-0413:15:00
PRIOn knowledge base
www.prio-n.com
4
cross site scripting
stored
easy address book web server
remote attacker
javascript payload
integrity impact

0.0005 Low

EPSS

Percentile

18.1%

JSON

Stored Cross-Site Scripting in Easy Address Book Web Server 1.6 version, through the users_admin.ghp file that affects multiple parameters such as (firstname, homephone, lastname, lastname, middlename, workaddress, workcity, workcountry, workphone, workstate, workzip). This vulnerability allows a remote attacker to store a malicious JavaScript payload in the application to be executed when the page is loaded, resulting in an integrity impact.

CPENameOperatorVersion
easy_address_book_web_servereq1.6

Related

cve 1
nvd 1
cvelist 1
packetstorm 1
cve
cve
CVE-2023-4493
2023-10-04 13:15:25
nvd
nvd
CVE-2023-4493
2023-10-04 13:15:25
cvelist
cvelist
CVE-2023-4493 Easy Address Book Web Server Stored XSS vulnerability
2023-10-04 12:24:02
packetstorm
packetstorm
Easy Address Book Web Server 1.6 Buffer Overflow / Cross Site Scripting
2023-08-31 00:00:00

0.0005 Low

EPSS

Percentile

18.1%

JSON
Related for PRION:CVE-2023-4493
cve1nvd1cvelist1packetstorm1