Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:33 p.m.9 views

CVE-2023-31434

The parameters nutzertitel, nutzervn, and nutzernn in the user profile, and langID and ONLINEID in direct links, in evasys before 8.2 Build 2286 and 9.x before 9.0 Build 2401 do not validate input, which allows authenticated attackers to inject HTML Code and XSS payloads in multiple locations...

5.4CVSS5.9AI score0.00468EPSS
Exploits1References1
NVD
NVD
added 2023/05/02 8:15 p.m.13 views

CVE-2023-31434

The parameters nutzertitel, nutzervn, and nutzernn in the user profile, and langID and ONLINEID in direct links, in evasys before 8.2 Build 2286 and 9.x before 9.0 Build 2401 do not validate input, which allows authenticated attackers to inject HTML Code and XSS payloads in multiple locations...

5.4CVSS5.3AI score0.00468EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/05/02 12:0 a.m.10 views

CVE-2023-31434

The parameters nutzertitel, nutzervn, and nutzernn in the user profile, and langID and ONLINEID in direct links, in evasys before 8.2 Build 2286 and 9.x before 9.0 Build 2401 do not validate input, which allows authenticated attackers to inject HTML Code and XSS payloads in multiple locations...

5.3AI score0.00468EPSS
Exploits1References1
CVE
CVE
added 2023/05/02 12:0 a.m.51 views

CVE-2023-31434

The CVE-2023-31434 issue affects evasys prior to 8.2 Build 2286 and 9.x prior to 9.0 Build 2401 where input validation is missing for parameters nutzer_titel, nutzer_vn, nutzer_nn (user profile) and langID/ONLINEID (direct links). This allows authenticated attackers to inject HTML code and XSS pa...

5.4CVSS5.2AI score0.00468EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/05/02 12:0 a.m.20 views

CVE-2023-31434

The parameters nutzertitel, nutzervn, and nutzernn in the user profile, and langID and ONLINEID in direct links, in evasys before 8.2 Build 2286 and 9.x before 9.0 Build 2401 do not validate input, which allows authenticated attackers to inject HTML Code and XSS payloads in multiple locations...

5.5AI score0.00468EPSS
Exploits1References1
Rows per page
Query Builder