Cross site scripting

2024-01-1304:15:00

PRIOn knowledge base

www.prio-n.com

cross site scripting

release 3-0 build 7

dom based

reflected xss

qnme-ajax

6.7 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 was discovered to contain a DOM Based reflected XSS vulnerability within the component qnme-ajax?method=tree_table.

CPENameOperatorVersion
archive_storage_managereq30 build7patch0

CPE	Name	Operator	Version
	archive_storage_manager	eq	30 build7patch0

References

github.com/Oracle-Security/CVEs/blob/main/QStar%20Archive%20Solutions/CVE-2023-51064.md