13 matches found
CVE-2023-40812
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
EUVD-2023-2861
Malicious code in bioql PyPI...
Cross Site Scripting (XSS)
openCRX is vulnerable to Cross Site Scripting XSS attack. The vulnerability is due to a lack of validation in the name field under an accounts group. An attacker can potentially use this vulnerability for phishing attacks, website defacement or DoS...
Cross-site Scripting in OpenCRX
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
GHSA-3G79-J8HQ-R4XV Cross-site Scripting in OpenCRX
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
CVE-2023-40812
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
CVE-2023-40812
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
CVE-2023-40812
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
Input validation
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
openCRX Security Vulnerabilities
openCRX is an open source Crm software. A security vulnerability exists in openCRX version 5.2.0, which originated from a vulnerability that allows attackers to perform HTML injection attacks via the Accounts Group Name field...
CVE-2023-40812
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
CVE-2023-40812
OpenCRX version 5.2.0 is vulnerable to HTML injection via the Accounts Group Name Field...
PT-2023-27649 · Opencrx · Opencrx
Name of the Vulnerable Software and Affected Versions: OpenCRX version 5.2.0 Description: The issue allows for HTML injection via the Accounts Group Name Field. Recommendations: For OpenCRX version 5.2.0, update to a version that fixes this issue, or as a temporary workaround, consider validating...