2 matches found
CVE-2023-49977
A cross-site scripting XSS vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the address parameter at /customersupport/index.php?page=newcustomer...
CVE-2023-49977
CVE-2023-49977 is an XSS vulnerability in Customer Support System v1. A crafted payload injected into the address parameter at /customer_support/index.php?page=new_customer can cause arbitrary web scripts/HTML to execute due to insufficient input filtering/escaping. The affected software is the C...