Cross site scripting

2024-01-1304:15:00

PRIOn knowledge base

www.prio-n.com

cross site scripting

authenticated

reflected

vulnerability

qstar archive solutions

release

build 7

execute

arbitrary javascript

crafted link

nvd

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.2%

JSON

An authenticated reflected cross-site scripting (XSS) vulnerability in QStar Archive Solutions Release RELEASE_3-0 Build 7 allows attackers to execute arbitrary javascript on a victim’s browser via a crafted link.

CPENameOperatorVersion
archive_storage_managereq30 build7patch0

CPE	Name	Operator	Version
	archive_storage_manager	eq	30 build7patch0

References

github.com/Oracle-Security/CVEs/blob/main/QStar%20Archive%20Solutions/CVE-2023-51068.md