231 matches found
PT-2023-16827 · Unknown · Answerdev/Answer
Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject...
PT-2023-16830 · Unknown · Answerdev/Answer
Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject...
PT-2023-16834 · Unknown · Answerdev/Answer
Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input without proper validation, allowing attackers to inject malicious scripts. Thi...
PT-2023-16833 · Unknown · Answerdev/Answer
Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject...
CVE-2023-1240 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1238 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1237 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
PT-2023-16835 · Unknown · Answerdev/Answer
Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject...
PT-2023-16831 · Unknown · Answerdev/Answer
Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input without proper validation, allowing attackers to inject malicious scripts. Thi...
CVE-2023-1241 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1243 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1240 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1241 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1244 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1243 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1243 Cross-site Scripting (XSS) - Stored in answerdev/answer
Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...
CVE-2023-1243
CVE-2023-1243 describes a Stored Cross-site Scripting (XSS) vulnerability in the open‑source knowledge base software answerdev/answer prior to version 1.0.6. Root cause: user input stored by the application is displayed without proper sanitization, enabling script injection. Affected product: ans...
CVE-2023-1240
The CVE-2023-1240 entry covers a Stored XSS flaw in the open-source project answerdev/answer, affecting versions prior to 1.0.6. The vulnerability arises from input that is stored and later displayed without proper sanitization, enabling arbitrary script execution in affected users’ browsers. Mul...
CVE-2023-1237
CVE-2023-1237 affects the GitHub project answerdev/answer prior to version 1.0.6. The issue is a Stored Cross-site Scripting (XSS) vulnerability in user-supplied content that is stored and later displayed. The provided connected documents confirm the vulnerability type (XSS) and affected version ...
CVE-2023-1245
CVE-2023-1245 corresponds to a Stored XSS in the Answer app (github.com/answerdev/answer) prior to version 1.0.6. Multiple sources confirm that the vulnerability exists in that repository before 1.0.6; remediation is to upgrade to 1.0.6 or later. The connected documents do not provide exploit det...