Cross site scripting

2024-01-1304:15:00

PRIOn knowledge base

www.prio-n.com

cross site scripting

unauthenticated

reflected

javascript execution

crafted link

nvd

6.3 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

An unauthenticated reflected cross-site scripting (XSS) vulnerability in QStar Archive Solutions Release RELEASE_3-0 Build 7 allows attackers to execute arbitrary javascript on a victim’s browser via a crafted link.

CPENameOperatorVersion
archive_storage_managereq30 build7patch0

CPE	Name	Operator	Version
	archive_storage_manager	eq	30 build7patch0

References

github.com/Oracle-Security/CVEs/blob/main/QStar%20Archive%20Solutions/CVE-2023-51067.md