5 matches found
CVE-2023-3505
A vulnerability was found in Onest CRM 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/project/update/2 of the component Project List Handler. The manipulation of the argument name with the input leads to cross site scripting. It is possible to initiate...
CVE-2023-3505
A vulnerability was found in Onest CRM 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/project/update/2 of the component Project List Handler. The manipulation of the argument name with the input alert1 leads to cross site scripting. It is possible to...
CVE-2023-3505
A vulnerability was found in Onest CRM 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/project/update/2 of the component Project List Handler. The manipulation of the argument name with the input alert1 leads to cross site scripting. It is possible to...
CVE-2023-3505 Onest CRM Project List 2 cross site scripting
A vulnerability was found in Onest CRM 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/project/update/2 of the component Project List Handler. The manipulation of the argument name with the input alert1 leads to cross site scripting. It is possible to...
CVE-2023-3505
CVE-2023-3505 affects Onest CRM 1.0. The vulnerability is a cross-site scripting flaw in the /admin/project/update/2 endpoint, triggered by manipulating the name parameter with input like . It is exploitable remotely and could lead to client-side script execution. The initial sources do not provi...