3 matches found
CVE-2023-42427
Cross-site scripting vulnerability exists in UNIVERSAL PASSPORT RX versions 1.0.0 to 1.0.7, which may allow a remote authenticated attacker to execute an arbitrary script on the web browser of the user who is using the product...
CVE-2023-42427
CVE-2023-42427 affects UNIVERSAL PASSPORT RX versions 1.0.0–1.0.7. Description: cross-site scripting may allow a remote authenticated attacker to execute arbitrary scripts in a user’s browser. Root cause hinted across sources includes a known vulnerability in the Primefaces library and associated...
JVN#43215077: Multiple vulnerabilities in UNIVERSAL PASSPORT RX
UNIVERSAL PASSPORT RX provided by Japan System Techniques Co., Ltd. contains multiple vulnerabilities listed below. Cross-site scripting CWE-79 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Base Score 5.4 CVE-2023-42427 Dependency on vulnerable third-party component CWE-1395 Known vulnerability in...