CVE-2023-1239 Cross-site Scripting (XSS) - Reflected in answerdev/answer

Cross-site Scripting XSS - Reflected in GitHub repository answerdev/answer prior to 1.0.6...

PT-2023-16833 · Unknown · Answerdev/Answer

Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject...

CVE-2023-1237 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1241 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

PT-2023-16834 · Unknown · Answerdev/Answer

Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input without proper validation, allowing attackers to inject malicious scripts. Thi...

CVE-2023-1240 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1243 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1245

CVE-2023-1245 corresponds to a Stored XSS in the Answer app (github.com/answerdev/answer) prior to version 1.0.6. Multiple sources confirm that the vulnerability exists in that repository before 1.0.6; remediation is to upgrade to 1.0.6 or later. The connected documents do not provide exploit det...

CVE-2023-1241

CVE-2023-1241 is a stored XSS vulnerability in the open‑source knowledge base software answerdev/answer, affecting versions prior to 1.0.6. The issue arises when user-supplied input is stored and later rendered without proper sanitization, enabling script execution in a victim’s browser. Public r...

CVE-2023-1240 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

PT-2023-16830 · Unknown · Answerdev/Answer

Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject...

CVE-2023-1244 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1239

CVE-2023-1239 affects answerdev/answer prior to version 1.0.6. The vulnerability is a reflected Cross-site Scripting (XSS) flaw caused by including unsanitized user input in the output, enabling script execution in a victim’s browser. Impact is described as primarily confidentiality and integrity...

PT-2023-16835 · Unknown · Answerdev/Answer

Name of the Vulnerable Software and Affected Versions: answerdev/answer versions prior to 1.0.6 Description: The issue is related to Cross-site Scripting XSS - Stored, which occurs when an application stores user input and later displays it without proper validation, allowing attackers to inject...

CVE-2023-1237 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1243

CVE-2023-1243 describes a Stored Cross-site Scripting (XSS) vulnerability in the open‑source knowledge base software answerdev/answer prior to version 1.0.6. Root cause: user input stored by the application is displayed without proper sanitization, enabling script injection. Affected product: ans...

CVE-2023-1238

CVE-2023-1238 is a Stored XSS in answerdev/answer prior to 1.0.6. Affected: the Answer project (github.com/answerdev/answer); root cause: unsanitized/stored user input allowing script injection. Potential impact: browser-level script execution for affected users. Remediation: upgrade to version 1...

CVE-2023-1242

CVE-2023-1242: Cross-site Scripting (XSS) stored in the Answer software (github.com/answerdev/answer) prior to version 1.0.6. Affected component is likely user input that is not properly sanitized in answers/tags descriptions, enabling injected JavaScript via stored payloads. Documented in multip...

CVE-2023-1239 Cross-site Scripting (XSS) - Reflected in answerdev/answer

Cross-site Scripting XSS - Reflected in GitHub repository answerdev/answer prior to 1.0.6...

CVE-2023-1244 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.6...