Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:30 a.m.8 views

CVE-2023-29052

Users were able to define disclaimer texts for an upsell shop dialog that would contain script code that was not sanitized correctly. Attackers could lure victims to user accounts with malicious script code and make them execute it in the context of a trusted domain. We added sanitization for thi...

5.4CVSS7.1AI score0.00436EPSS
Exploits0References1
Circl
Circl
added 2024/01/08 10:26 a.m.4 views

CVE-2023-29052

creationtimestamp| type| source ---|---|--- 2024-01-08 10:26:28+00:00| seen| https://t.me/ctinow/164262 2025-06-17 20:40:11+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18675...

5.4CVSS5.5AI score0.00436EPSS
Exploits0References2
NVD
NVD
added 2024/01/08 9:15 a.m.31 views

CVE-2023-29052

Users were able to define disclaimer texts for an upsell shop dialog that would contain script code that was not sanitized correctly. Attackers could lure victims to user accounts with malicious script code and make them execute it in the context of a trusted domain. We added sanitization for thi...

5.4CVSS5.6AI score0.00436EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/01/08 9:4 a.m.29 views

CVE-2023-29052

Users were able to define disclaimer texts for an upsell shop dialog that would contain script code that was not sanitized correctly. Attackers could lure victims to user accounts with malicious script code and make them execute it in the context of a trusted domain. We added sanitization for thi...

5.4CVSS5.8AI score0.00436EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/01/08 9:4 a.m.3 views

CVE-2023-29052

Users were able to define disclaimer texts for an upsell shop dialog that would contain script code that was not sanitized correctly. Attackers could lure victims to user accounts with malicious script code and make them execute it in the context of a trusted domain. We added sanitization for thi...

5.4CVSS7.3AI score0.00436EPSS
Exploits0References2
OSV
OSV
added 2024/01/08 9:4 a.m.28 views

CVE-2023-29052

Users were able to define disclaimer texts for an upsell shop dialog that would contain script code that was not sanitized correctly. Attackers could lure victims to user accounts with malicious script code and make them execute it in the context of a trusted domain. We added sanitization for thi...

5.4CVSS7.1AI score0.00436EPSS
Exploits0References5
CVE
CVE
added 2024/01/08 9:4 a.m.51 views

CVE-2023-29052

The CVE-2023-29052 issue is an Open-Xchange App Suite frontend cross-site scripting vulnerability arising from disclaimer texts in an upsell dialog that could contain unsanitized script code. Affected component: App Suite frontend (notably Open-Xchange App Suite frontend version 7.10.6-rev34 per ...

5.4CVSS5.6AI score0.00436EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder