CVE-2023-31297

An issue was discovered in SESAMI planfocus CPTO Cash Point & Transport Optimizer 6.3.8.6 718. There is XSS via the Name field when modifying a client...

CVE-2023-31297

An issue was discovered in SESAMI planfocus CPTO Cash Point & Transport Optimizer 6.3.8.6 718. There is XSS via the Name field when modifying a client...

PT-2023-23283 · Sesami · Sesami Planfocus Cpto

Name of the Vulnerable Software and Affected Versions: SESAMI planfocus CPTO Cash Point & Transport Optimizer version 6.3.8.6 718 Description: An issue was discovered in the software, allowing for XSS via the Name field when modifying a client. Recommendations: For SESAMI planfocus CPTO Cash Poin...

CVE-2023-31297

SESAMI planfocus CPTO (Cash Point & Transport Optimizer) version 6.3.8.6 718 has a cross‑site scripting (XSS) flaw in the Name field when modifying a client. The root cause is unvalidated input in the Name field that can be used to inject JavaScript. Impact details are limited to XSS; the provide...

SESAMI planfocus CPTO Cross-Site Scripting Vulnerability

SESAMI is an open framework for modern cash optimization. A cross-site scripting vulnerability exists in SESAMI planfocus CPTO version 6.3.8.6, which originates when inserting JavaScript into the Name field on the client side...