2 matches found
CVE-2023-4709
A vulnerability classified as problematic has been found in TOTVS RM 12.1. Affected is an unknown function of the file Login.aspx of the component Portal. The manipulation of the argument VIEWSTATE leads to cross site scripting. It is possible to launch the attack remotely. The complexity of an...
CVE-2023-4709
TOTVS RM 12.1 Portal.Login.aspx vulnerable to cross-site scripting via VIEWSTATE manipulation. Impact described as remote exploitation with high attack complexity and low/none exploitation risk in defaults, but configurable environments can still be affected. Affected component: Login.aspx in Por...