11 matches found
CVE-2023-40816
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...
EUVD-2023-3017
Malicious code in bioql PyPI...
Cross-site Scripting in OpenCRX
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...
GHSA-QJMX-Q5M4-XQF5 Cross-site Scripting in OpenCRX
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...
CVE-2023-40816
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...
CVE-2023-40816
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...
Design/Logic Flaw
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...
CVE-2023-40816
OpenCRX 5.2.0 is vulnerable to HTML injection via the Activity Milestone Name Field, with reports indicating Cross‑Site Scripting potential (malicious script injection). Root cause: inadequate input sanitization/validation for that field. Exploitation details are not provided in the documents; no...
CVE-2023-40816
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...
openCRX Security Vulnerabilities
openCRX is an open source Crm software. A security vulnerability exists in openCRX version 5.2.0, which originated from a vulnerability that allows attackers to conduct HTML injection attacks via the Activity Milestone Name field...
CVE-2023-40816
OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Milestone Name Field...